Check Point Advisories

Update Protection against Zeus Web Server SSL2_Client_Hello Buffer Overflow

Check Point Reference: CPAI-2010-101
Date Published: 21 Jan 2010
Severity: Critical
Last Updated: Friday 01 January, 2010
Source: Intevydis Blog
Industry Reference:N/A
Protection Provided by:
Who is Vulnerable? Zeus Web Server 4.3r4
Vulnerability Description Zeus Web Server is a web server for Unix and Unix-like platforms. A buffer overflow was detected in Zeus Web Server SSL2 implementation (SSL2_CLIENT_HELLO).
Update/Patch AvaliableThe vulnerability was fixed in Zeus Server version 4.3r5:
http://support.zeus.com/zws/news/2010
Vulnerability DetailsA SSL man-in-the-middle attack was detected in Zeus Web Server. The vulnerability affects all compliant SSL implementations.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK