virus logo FortiClient Vulnerability

OpenSSL CVE-2014-3571 Vulnerability

description-logoDescription

Severity: ModerateA carefully crafted DTLS message can cause a segmentation fault in OpenSSL dueto a NULL pointer dereference. This could lead to a Denial Of Service attack.This issue affects all current OpenSSL versions: 1.0.1, 1.0.0 and 0.9.8.OpenSSL 1.0.1 DTLS users should upgrade to 1.0.1k.OpenSSL 1.0.0 DTLS users should upgrade to 1.0.0p.OpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zd.This issue was reported to OpenSSL on 22nd October 2014 by Markus Stenberg ofCisco Systems, Inc. The fix was developed by Stephen Henson of the OpenSSLcore team.

affected-products-logoAffected Applications

OpenSSL

CVE References

CVE-2014-3571

Other References

https://www.openssl.org/news/vulnerabilities.html
ID 39813
Created Jan 17, 2020
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor OpenSSL
Patch manual
Application OpenSSL