漏洞信息(CVE-2011-3389)

一、漏洞 CVE-2011-3389 基础信息

漏洞标题

N/A

来源：AIGC 神龙大模型

漏洞描述信息

SSL 协议，在 Microsoft Windows 和 Microsoft Internet Explorer 等特定配置中使用，通过使用链式初始化向量来加密数据，从而允许中间人攻击者通过在 HTTPS 会话中通过块选择边界攻击(BCBA)获取 plaintext HTTP 头部，并与使用 (1)HTML5 WebSocket API,(2)Java URLConnection API 或 (3) Silverlight WebClient API 的 JavaScript 代码结合使用，aka“BEAST”攻击。

来源：AIGC 神龙大模型

CVSS信息

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

来源：AIGC 神龙大模型

漏洞类别

N/A

来源：AIGC 神龙大模型

漏洞标题

N/A

来源：美国国家漏洞数据库 NVD

漏洞描述信息

The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

N/A

来源：美国国家漏洞数据库 NVD

漏洞标题

Opera 输入验证错误漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

Opera是挪威欧朋（Opera Software）公司所开发的一款Web浏览器，它支持多窗口浏览、可定制用户界面等。 Opera 11.51之前版本中存在未明安全漏洞，该漏洞具有未知攻击向量和“low severity”影响。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

加密问题

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2011-3389 的公开POC

#	POC 描述	源链接	神龙链接
1	:muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle:	https://github.com/mpgn/BEAST-PoC	POC详情

三、漏洞 CVE-2011-3389 的情报信息

http://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx x_refsource_CONFIRM
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail x_refsource_CONFIRM
http://my.opera.com/securitygroup/blog/2011/09/28/the-beast-ssl-tls-issue x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html x_refsource_CONFIRM
http://www.opera.com/support/kb/view/1004/ x_refsource_CONFIRM
http://curl.haxx.se/docs/adv_20120124B.html x_refsource_CONFIRM
http://support.apple.com/kb/HT6150 x_refsource_CONFIRM
http://www.opera.com/docs/changelogs/mac/1160/ x_refsource_CONFIRM
http://technet.microsoft.com/security/advisory/2588513 x_refsource_CONFIRM
http://support.apple.com/kb/HT5001 x_refsource_CONFIRM
http://eprint.iacr.org/2004/111 x_refsource_MISC
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02 x_refsource_MISC
http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx x_refsource_CONFIRM
http://www.opera.com/docs/changelogs/windows/1151/ x_refsource_CONFIRM
http://www.insecure.cl/Beast-SSL.rar x_refsource_MISC
http://eprint.iacr.org/2006/136 x_refsource_MISC
http://support.apple.com/kb/HT5501 x_refsource_CONFIRM
http://www.imperialviolet.org/2011/09/23/chromeandbeast.html x_refsource_CONFIRM
http://support.apple.com/kb/HT4999 x_refsource_CONFIRM
http://www.educatedguesswork.org/2011/09/security_impact_of_the_rizzodu.html x_refsource_MISC
http://www.opera.com/docs/changelogs/unix/1160/ x_refsource_CONFIRM
http://www.ibm.com/developerworks/java/jdk/alerts/ x_refsource_CONFIRM
https://cert-portal.siemens.com/productcert/pdf/ssa-556833.pdf x_refsource_CONFIRM
http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf x_refsource_CONFIRM
http://vnhacker.blogspot.com/2011/09/beast.html x_refsource_MISC
https://bugzilla.novell.com/show_bug.cgi?id=719047 x_refsource_CONFIRM
http://support.apple.com/kb/HT5130 x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=737506 x_refsource_CONFIRM
http://support.apple.com/kb/HT5281 x_refsource_CONFIRM
http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html x_refsource_CONFIRM
http://www.opera.com/docs/changelogs/mac/1151/ x_refsource_CONFIRM
http://www.opera.com/docs/changelogs/unix/1151/ x_refsource_CONFIRM
http://www.opera.com/docs/changelogs/windows/1160/ x_refsource_CONFIRM
http://blog.mozilla.com/security/2011/09/27/attack-against-tls-protected-communications/ x_refsource_CONFIRM
http://ekoparty.org/2011/juliano-rizzo.php x_refsource_MISC
http://isc.sans.edu/diary/SSL+TLS+part+3+/11635 x_refsource_MISC
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html x_refsource_CONFIRM
http://downloads.asterisk.org/pub/security/AST-2016-001.html x_refsource_CONFIRM
http://secunia.com/advisories/48256 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/55350 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/45791 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/47998 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/49198 third-party-advisory x_refsource_SECUNIA
http://osvdb.org/74829 vdb-entry x_refsource_OSVDB
http://secunia.com/advisories/55322 third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/bid/49388 vdb-entry x_refsource_BID
http://secunia.com/advisories/55351 third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/bid/49778 vdb-entry x_refsource_BID
http://secunia.com/advisories/48948 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/48692 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/48915 third-party-advisory x_refsource_SECUNIA
http://www.securitytracker.com/id?1026103 vdb-entry x_refsource_SECTRACK
http://www.securitytracker.com/id/1029190 vdb-entry x_refsource_SECTRACK
http://www.securitytracker.com/id?1025997 vdb-entry x_refsource_SECTRACK
http://www.securitytracker.com/id?1026704 vdb-entry x_refsource_SECTRACK
http://www.debian.org/security/2012/dsa-2398 vendor-advisory x_refsource_DEBIAN
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-006 vendor-advisory x_refsource_MS
http://www.us-cert.gov/cas/techalerts/TA12-010A.html third-party-advisory x_refsource_CERT
http://www.kb.cert.org/vuls/id/864643 third-party-advisory x_refsource_CERT-VN
http://www.ubuntu.com/usn/USN-1263-1 vendor-advisory x_refsource_UBUNTU
http://marc.info/?l=bugtraq&m=132872385320240&w=2 vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=134254957702612&w=2 vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=133365109612558&w=2 vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=134254866602253&w=2 vendor-advisory x_refsource_HP
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862 vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=133728004526190&w=2 vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=132750579901589&w=2 vendor-advisory x_refsource_HP
http://security.gentoo.org/glsa/glsa-201406-32.xml vendor-advisory x_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2012-0006.html vendor-advisory x_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2013-1455.html vendor-advisory x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2012:058 vendor-advisory x_refsource_MANDRIVA
http://rhn.redhat.com/errata/RHSA-2012-0508.html vendor-advisory x_refsource_REDHAT
http://security.gentoo.org/glsa/glsa-201203-02.xml vendor-advisory x_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2011-1384.html vendor-advisory x_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html vendor-advisory x_refsource_SUSE
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html vendor-advisory x_refsource_APPLE
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html vendor-advisory x_refsource_SUSE
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html vendor-advisory x_refsource_APPLE
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html vendor-advisory x_refsource_APPLE
http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html vendor-advisory x_refsource_APPLE
http://lists.apple.com/archives/security-announce/2012/Jul/msg00001.html vendor-advisory x_refsource_APPLE
http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html vendor-advisory x_refsource_APPLE
https://hermes.opensuse.org/messages/13155432 vendor-advisory x_refsource_SUSE
https://hermes.opensuse.org/messages/13154861 vendor-advisory x_refsource_SUSE
http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html vendor-advisory x_refsource_APPLE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14752 vdb-entry signature x_refsource_OVAL
https://nvd.nist.gov/vuln/detail/CVE-2011-3389

一、 漏洞 CVE-2011-3389 基础信息

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2011-3389 的公开POC

三、漏洞 CVE-2011-3389 的情报信息

一、漏洞 CVE-2011-3389 基础信息