National Vulnerability Database (NVD) National Vulnerability Database (CVE-2006-0645)

National Cyber Awareness System

Vulnerability Summary for CVE-2006-0645

Original release date:02/10/2006

Last revised:03/08/2011

Source: US-CERT/NIST

Overview

Tiny ASN.1 Library (libtasn1) before 0.2.18, as used by (1) GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and (2) GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test suite.

Impact

CVSS Severity (version 2.0 upgrade from v1.0):

CVSS v2 Base Score:7.5 (HIGH) (AV:N/AC:L/Au:N/C:P/I:P/A:P) (legend)

Impact Subscore: 6.4

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Provides user account access, Allows partial confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: VUPEN

Name: ADV-2006-0496

Hyperlink:http://www.vupen.com/english/advisories/2006/0496

External Source: BUGTRAQ

Name: 20060209 ProtoVer SSL: GnuTLS

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/424538/100/0/threaded

External Source: MISC

Name: http://www.gleg.net/protover_ssl.shtml

Hyperlink:http://www.gleg.net/protover_ssl.shtml

External Source: OVAL

Name: oval:org.mitre.oval:def:10540

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10540

External Source: MLIST

Name: [gnutls-dev] 20060209 GnuTLS 1.3.4 - Experimental - Security release

Hyperlink:http://lists.gnupg.org/pipermail/gnutls-dev/2006-February/001060.html

External Source: MLIST

Name: [gnutls-dev] 20060209 GnuTLS 1.2.10 - Security release

Hyperlink:http://lists.gnupg.org/pipermail/gnutls-dev/2006-February/001059.html

External Source: MLIST

Name: [gnutls-dev] 20060209 Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release

Hyperlink:http://lists.gnupg.org/pipermail/gnutls-dev/2006-February/001058.html

External Source: MISC

Name: http://josefsson.org/gnutls/releases/libtasn1/libtasn1-0.2.18-from-0.2.17.patch

Hyperlink:http://josefsson.org/gnutls/releases/libtasn1/libtasn1-0.2.18-from-0.2.17.patch

External Source: CONFIRM

Name: http://josefsson.org/cgi-bin/viewcvs.cgi/libtasn1/NEWS?root=gnupg-mirror&view=markup

Hyperlink:http://josefsson.org/cgi-bin/viewcvs.cgi/libtasn1/NEWS?root=gnupg-mirror&view=markup

External Source: MISC

Name: http://josefsson.org/cgi-bin/viewcvs.cgi/gnutls/tests/certder.c?view=markup

Hyperlink:http://josefsson.org/cgi-bin/viewcvs.cgi/gnutls/tests/certder.c?view=markup

External Source: XF

Name: gnutls-libtasn1-der-dos(24606)

Hyperlink:http://xforce.iss.net/xforce/xfdb/24606

External Source: UBUNTU

Name: USN-251-1

Hyperlink:http://www.ubuntulinux.org/support/documentation/usn/usn-251-1

External Source: TRUSTIX

Name: 2006-0008

Hyperlink:http://www.trustix.org/errata/2006/0008

External Source: BID

Name: 16568

Hyperlink:http://www.securityfocus.com/bid/16568

External Source: FEDORA

Name: FEDORA-2006-107

Hyperlink:http://www.redhat.com/archives/fedora-announce-list/2006-February/msg00043.html

External Source: OSVDB

Name: 23054

Hyperlink:http://www.osvdb.org/23054

External Source: MANDRIVA

Name: MDKSA-2006:039

Hyperlink:http://www.mandriva.com/security/advisories?name=MDKSA-2006:039

External Source: GENTOO

Name: GLSA-200602-08

Hyperlink:http://www.gentoo.org/security/en/glsa/glsa-200602-08.xml

External Source: DEBIAN

Name: DSA-986

Hyperlink:http://www.debian.org/security/2006/dsa-986

External Source: DEBIAN

Name: DSA-985

Hyperlink:http://www.debian.org/security/2006/dsa-985

External Source: SECTRACK

Name: 1015612

Hyperlink:http://securitytracker.com/id?1015612

External Source: SREASON

Name: 446

Hyperlink:http://securityreason.com/securityalert/446

External Source: SECUNIA

Name: 19092

Hyperlink:http://secunia.com/advisories/19092

External Source: SECUNIA

Name: 19080

Hyperlink:http://secunia.com/advisories/19080

External Source: SECUNIA

Name: 18918

Hyperlink:http://secunia.com/advisories/18918

External Source: SECUNIA

Name: 18898

Hyperlink:http://secunia.com/advisories/18898

External Source: SECUNIA

Name: 18832

Hyperlink:http://secunia.com/advisories/18832

External Source: SECUNIA

Name: 18830

Hyperlink:http://secunia.com/advisories/18830

External Source: SECUNIA

Name: 18815

Hyperlink:http://secunia.com/advisories/18815

External Source: SECUNIA

Name: 18794

Hyperlink:http://secunia.com/advisories/18794

External Source: REDHAT

Name: RHSA-2006:0207

Hyperlink:http://rhn.redhat.com/errata/RHSA-2006-0207.html

References to Check Content

Identifier:oval:org.mitre.oval:def:10540

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10540

Vulnerable software and versions

Configuration 1

* cpe:/a:free_software_foundation_inc.:libtasn1:0.1.0

* cpe:/a:free_software_foundation_inc.:libtasn1:0.1.1

* cpe:/a:free_software_foundation_inc.:libtasn1:0.1.2

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.0

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.1

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.10

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.11

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.12

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.13

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.14

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.15

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.16

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.17

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.2

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.3

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.4

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.5

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.6

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.7

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.8

* cpe:/a:free_software_foundation_inc.:libtasn1:0.2.9

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0645