virus logo FortiClient Vulnerability

OpenSSL CVE-2014-3506 Denial of Service Vulnerability

description-logoDescription

An attacker can force openssl to consume large amounts of memory whilstprocessing DTLS handshake messages. This can be exploited through a Denial ofService attack.OpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zbOpenSSL 1.0.0 DTLS users should upgrade to 1.0.0n.OpenSSL 1.0.1 DTLS users should upgrade to 1.0.1i.Thanks to Adam Langley (Google) for discovering and researching thisissue. This issue was reported to OpenSSL on 6th June 2014.The fix was developed by Adam Langley.

affected-products-logoAffected Applications

OpenSSL

CVE References

CVE-2014-3506

Other References

https://www.openssl.org/news/vulnerabilities.html
ID 39805
Created Jan 17, 2020
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor OpenSSL
Patch manual
Application OpenSSL