Advisory ID

12177

Release date

2016-01-29

Last Updated

2016-01-29

Issue Severity

None

 

Source

Source

OpenSSL org

Release date

2016-01-28

CVSS v2 Base Score

High

Problem Description

Use of unsafe Diffie-Hellman (DH) parameters and key re-use opens for key recovery attacks when DH or ephemeral DH (DHE) cipher suites are used.

Find more information about CVE-2016-0701 from OpenSSL org.

 

Impact

N/A.

 

Affected Products

OpenSSL in FoxT products only supports Diffie-Hellman-based cipher suites using elliptic curves (ECDH, ECDHE), which are not affected by this vulnerability.



Workaround

 

N/A

Obtaining Fixed Software

 

N/A



External References

CVE-2016-0701










Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: April 16, 2019