发布时间 :2006-03-23 06:06:00
修订时间 :2011-03-07 21:31:32

[原文]The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) permits encryption with a NULL key, which results in cleartext communication that allows remote attackers to read an SSL protected session by sniffing network traffic.

[CNNVD]Novell NetWare和Novell 开放企业服务器'NILE.NLM'空"密钥加密SSL会话漏洞(CNNVD-200603-401)

        在Novell NetWare 6.5和Novell 开放企业服务器(OES)的NILE.NLM中的SSL服务器实施,允许用一个"空"密钥加密,所引起的cleartext通信可以让远程攻击者通过嗅探网络通信读取一个SSL保护会话。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/o:novell:netware:6.5:sp4Novell NetWare 6.5 Service Pack 4
cpe:/o:novell:netware:6.5:sp2Novell NetWare 6.5 Service Pack 2
cpe:/o:novell:netware:6.5:sp1Novell NetWare 6.5 Service Pack 1
cpe:/o:novell:netware:6.5:sp3Novell NetWare 6.5 Service Pack 3
cpe:/o:novell:netware:6.5Novell NetWare 6.5
cpe:/a:novell:open_enterprise_serverNovell Open Enterprise Server

- OVAL (用于检测的技术细节)


- 官方数据库链接
(官方数据源) MITRE
(官方数据源) NVD
(官方数据源) CNNVD

- 其它链接及资源
(UNKNOWN)  VUPEN  ADV-2006-1043
(UNKNOWN)  BID  17176
(UNKNOWN)  XF  netware-nile-ssl-cleartext(25380)

- 漏洞信息

Novell NetWare和Novell 开放企业服务器'NILE.NLM'空"密钥加密SSL会话漏洞
中危 设计错误
2006-03-23 00:00:00 2006-03-23 00:00:00
        在Novell NetWare 6.5和Novell 开放企业服务器(OES)的NILE.NLM中的SSL服务器实施,允许用一个"空"密钥加密,所引起的cleartext通信可以让远程攻击者通过嗅探网络通信读取一个SSL保护会话。

- 公告与补丁


- 漏洞信息

Novell NetWare NILE.NLM SSL Server Cleartext Communication Disclosure
Remote / Network Access Cryptographic, Information Disclosure
Loss of Confidentiality
Exploit Unknown

- 漏洞描述

Novell NetWare and Novell Open Enterprise Server contains a flaw that may allow a malicious user to force server to negotiate a less secure SSL connection. The issue is triggered because SSL server implementation in NILE.NLM permits encryption with a NULL key, which results in cleartext communication. It is possible that the flaw may allow remote attackers to read an SSL protected session resulting in a loss of confidentiality.

- 时间线

2006-03-17 Unknow
Unknow Unknow

- 解决方案

Currently, there are no known workarounds or upgrades to correct this issue. However, vendor has released a patch NILE65SP5A.EXE to address this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Novell SSL Server Multiple Vulnerabilities
Design Error 17176
Yes No
2006-03-21 12:00:00 2006-03-21 10:14:00
Reported by the vendor.

- 受影响的程序版本

Novell Open Enterprise Server (OES) 0
Novell Netware 6.5 SP4
Novell Netware 6.5 SP1.1(b)
Novell Netware 6.5 SP1.1(a)
Novell Netware 6.5 SP3
Novell Netware 6.5 SP2
Novell Netware 6.5 SP1
Novell Netware 6.5

- 漏洞讨论

Novell SSL Server is prone to multiple vulnerabilities.

These issues affect Novell Open Enterprise Server and Novell NetWare and may allow attackers to gain access to or tamper with seemingly secure communications.

Presumably, these issue are specific to Novell, but this is not confirmed. Due to a lack of details, further information is not available at the moment. This BID will be updated when more details become available.

- 漏洞利用

An exploit is likely not required.

- 解决方案

Novell has released advisory TID10100633 and fixes to address these issues. Please see the references for more information.

- 相关参考