virus logo FortiClient Vulnerability

OpenSSL CVE-2014-3470 Denial of Service Vulnerability

description-logoDescription

OpenSSL TLS clients enabling anonymous ECDH ciphersuites are subject to adenial of service attack.OpenSSL 0.9.8 users should upgrade to 0.9.8zaOpenSSL 1.0.0 users should upgrade to 1.0.0m.OpenSSL 1.0.1 users should upgrade to 1.0.1h.Thanks to Felix Grbert and Ivan Fratri at Google for discovering thisissue. This issue was reported to OpenSSL on 28th May 2014.The fix was developed by Stephen Henson of the OpenSSL core team.Other issuesOpenSSL 1.0.0m and OpenSSL 0.9.8za also contain a fix for

affected-products-logoAffected Applications

OpenSSL

CVE References

CVE-2014-3470

Other References

https://www.openssl.org/news/vulnerabilities.html
ID 39800
Created Jan 17, 2020
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor OpenSSL
Patch manual
Application OpenSSL