CVE-2015-2808

EUVD-2015-2896

01.04.2015, 02:00

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 96%

Affected Products (NVD)

Vendor	Product	Version
oracle	communications_application_session_controller	3.0.0 ≤ 𝑥 ≤ 3.9.0
oracle	communications_policy_management	𝑥 < 9.9.2
oracle	http_server	11.1.1.7.0
oracle	http_server	11.1.1.9.0
oracle	http_server	12.1.3.0.0
oracle	http_server	12.2.1.1.0
oracle	http_server	12.2.1.2.0
oracle	integrated_lights_out_manager_firmware	3.0.0 ≤ 𝑥 ≤ 3.2.11
oracle	integrated_lights_out_manager_firmware	4.0.0 ≤ 𝑥 ≤ 4.0.4
debian	debian_linux	7.0
debian	debian_linux	8.0
redhat	satellite	5.7
redhat	enterprise_linux_desktop	5.0
redhat	enterprise_linux_desktop	6.0
redhat	enterprise_linux_desktop	7.0
redhat	enterprise_linux_eus	6.6
redhat	enterprise_linux_eus	7.1
redhat	enterprise_linux_eus	7.2
redhat	enterprise_linux_eus	7.3
redhat	enterprise_linux_eus	7.4
redhat	enterprise_linux_eus	7.5
redhat	enterprise_linux_eus	7.6
redhat	enterprise_linux_eus	7.7
redhat	enterprise_linux_server	5.0
redhat	enterprise_linux_server	6.0
redhat	enterprise_linux_server	7.0
redhat	enterprise_linux_server_aus	6.6
redhat	enterprise_linux_server_aus	7.3
redhat	enterprise_linux_server_aus	7.4
redhat	enterprise_linux_server_aus	7.6
redhat	enterprise_linux_server_aus	7.7
redhat	enterprise_linux_server_tus	7.3
redhat	enterprise_linux_server_tus	7.6
redhat	enterprise_linux_server_tus	7.7
redhat	enterprise_linux_workstation	5.0
redhat	enterprise_linux_workstation	6.0
redhat	enterprise_linux_workstation	7.0
opensuse	opensuse	13.1
opensuse	opensuse	13.2
suse	manager	1.7
canonical	ubuntu_linux	12.04
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	15.04
redhat	satellite	5.6
huawei	e6000_firmware	-
huawei	e9000_firmware	-
huawei	oceanstor_18500_firmware	-
huawei	oceanstor_18800_firmware	-
huawei	oceanstor_18800f_firmware	-
huawei	oceanstor_9000_firmware	-
huawei	oceanstor_cse_firmware	-
huawei	oceanstor_hvs85t_firmware	-
huawei	oceanstor_s2600t_firmware	-
huawei	oceanstor_s5500t_firmware	-
huawei	oceanstor_s5600t_firmware	-
huawei	oceanstor_s5800t_firmware	-
huawei	oceanstor_s6800t_firmware	-
huawei	oceanstor_vis6600t_firmware	-
huawei	quidway_s9300_firmware	-
huawei	s7700_firmware	-
huawei	s7700_firmware	-
huawei	9700_firmware	-
huawei	9700_firmware	-
huawei	s12700_firmware	-
huawei	s12700_firmware	-
huawei	s2700_firmware	-
huawei	s3700_firmware	-
huawei	s5700ei_firmware	-
huawei	s5700hi_firmware	-
huawei	s5700si_firmware	-
huawei	s5710ei_firmware	-
huawei	s5710hi_firmware	-
huawei	s6700_firmware	-
huawei	s2750_firmware	-
huawei	s5700li_firmware	-
huawei	s5700s-li_firmware	-
huawei	s5720hi_firmware	-
huawei	s2750_firmware	-
huawei	s5700li_firmware	-
huawei	s5700s-li_firmware	-
huawei	s5720hi_firmware	-
huawei	s5720ei_firmware	-
huawei	te60_firmware	-
ibm	cognos_metrics_manager	10.1
ibm	cognos_metrics_manager	10.1.1
ibm	cognos_metrics_manager	10.2
ibm	cognos_metrics_manager	10.2.1
ibm	cognos_metrics_manager	10.2.2

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

openjdk-8

sid	8u432-b06-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

openjdk-6

precise	Fixed 6b36-1.13.8-0ubuntu1~12.04 released
trusty	Fixed 6b36-1.13.8-0ubuntu1~14.04 released
utopic	ignored
vivid	Fixed 6b36-1.13.8-0ubuntu1~15.04.1 released
wily	not-affected

openjdk-7

precise	Fixed 7u79-2.5.6-0ubuntu1.12.04.1 released
trusty	Fixed 7u79-2.5.6-0ubuntu1.14.04.1 released
utopic	ignored
vivid	Fixed 7u79-2.5.6-0ubuntu1.15.04.1 released
wily	not-affected