Boletines de Vulnerabilidades

Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products

Información sobre el sistema
   
Software afectado Cisco

Descripción
On December 3, 2015, the OpenSSL Project released a security advisory detailing four vulnerabilities.Multiple Cisco products incorporate a version of the OpenSSL package affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This advisory will be updated as additional information becomes available.Cisco will release software updates that address these vulnerabilities.Workarounds that mitigate these

More info:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Multiple%20Vulnerabilities%20in%20OpenSSL%20(December%202015)%20Affecting%

Identificadores estándar
Propiedad Valor
CVE CVE-2015-3193 ,CVE-2015-3194 ,CVE-2015-3195 and CVE-2015-3196.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-12-05

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT