Advisory ID

12177

Release date

2016-01-29

Last Updated

2016-01-29

Issue Severity

None

Source

Source

OpenSSL org

Release date

2016-01-28

CVSS v2 Base Score

High

Problem Description

Use of unsafe Diffie-Hellman (DH) parameters and key re-use opens for key recovery attacks when DH or ephemeral DH (DHE) cipher suites are used.

Find more information about CVE-2016-0701 from OpenSSL org.

Impact

N/A.

Affected Products

OpenSSL in FoxT products only supports Diffie-Hellman-based cipher suites using elliptic curves (ECDH, ECDHE), which are not affected by this vulnerability.



Workaround

N/A

Obtaining Fixed Software

N/A



External References

CVE-2016-0701










Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018