{"vuid":"VU#754281","idnumber":"754281","name":"RSA BSAFE libraries denial of service vulnerability","keywords":["RSA BSAFE","DoS","denial of service","Crypto-C library","ASN.1 object","Cert-C","INFO#111001"],"overview":"The RSA BSAFE Crypto-C and Cert-C libraries contain a denial-of-service vulnerability.","clean_desc":"RSA BSAFE products include software libraries that developers can use to implement cryptography in their applications. The RSA BSAFE Crypto-C and Cert-C libraries contain a denial-of-service vulnerability. Note that these libraries may be used in third-party applications that are not distributed by RSA.","impact":"A remote, unauthenticated attacker may be able to create a denial-of-service condition.","resolution":"Update\nRSA has released Crypto-C 6.3.1 and Cert-C 2.8 to address this issue. For more information about obtaining updated software, contact RSA and reference Bug ID 46337.","workarounds":"","sysaffected":"","thanks":"Thanks to Cisco Systems for reporting this vulnerability.","author":"This document was written by Ryan Giobbi.","public":["http://www.rsa.com/node.aspx?id=1204","http://secunia.com/advisories/25364/"],"cveids":["CVE-2006-3894"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2006-11-29T20:23:40Z","publicdate":"2007-05-22T00:00:00Z","datefirstpublished":"2007-05-22T12:56:53Z","dateupdated":"2007-12-19T15:56:58Z","revision":18,"vrda_d1_directreport":"1","vrda_d1_population":"4","vrda_d1_impact":"1","cam_widelyknown":"1","cam_exploitation":"0","cam_internetinfrastructure":"7","cam_population":"15","cam_impact":"2","cam_easeofexploitation":"4","cam_attackeraccessrequired":"7","cam_scorecurrent":"0.126","cam_scorecurrentwidelyknown":"0.42525","cam_scorecurrentwidelyknownexploited":"0.74025","ipprotocol":"","cvss_accessvector":"--","cvss_accesscomplexity":"--","cvss_authentication":null,"cvss_confidentialityimpact":"--","cvss_integrityimpact":"--","cvss_availabilityimpact":"--","cvss_exploitablity":null,"cvss_remediationlevel":"ND","cvss_reportconfidence":"ND","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"ND","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"0","cvss_basevector":"AV:--/AC:--/Au:--/C:--/I:--/A:--","cvss_temporalscore":"0","cvss_environmentalscore":"0","cvss_environmentalvector":"CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND","metric":0.126,"vulnote":null}