Intrusion Prevention

OpenSSL.AES-NI.Integer.Underflow

Description

This indicates an attack attempt against an Integer Underflow Vulnerability in OpenSSL.
The vulnerability is caused by an error when vulnerable application is handling a CBC ciphersuites on platforms that support the AES-NI instruction set. It allows a remote attacker to cause a denial-of-service condition via a crafted TLS Encrypted Handshake Message.

Affected Products

OpenSSL Project OpenSSL 1.0.0x prior to 1.0.0k
OpenSSL Project OpenSSL 1.0.1x prior to 1.0.0d
OpenSSL Project OpenSSL 0.9.8x prior to 0.9.8y

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Refer to the vendor's website for suggested workaround.
http://www.openssl.org/news/secadv_20130205.txt

CVE References

CVE-2012-2686