SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  OpenSSL Anonymous ECDH DoS 1

Category: WEB-TLS      

The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.


Relevant Information