CVE-2002-20001

The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.
References
Link Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf Third Party Advisory
https://dheatattack.com Third Party Advisory
https://dheatattack.gitlab.io/
https://github.com/Balasys/dheater Product
https://github.com/mozilla/ssl-config-generator/issues/162 Issue Tracking
https://gitlab.com/dheatattack/dheater
https://ieeexplore.ieee.org/document/10374117
https://support.f5.com/csp/article/K83120834 Third Party Advisory
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt Third Party Advisory
https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ Third Party Advisory
https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ Issue Tracking
https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol Exploit Technical Description
https://www.suse.com/support/kb/doc/?id=000020510 Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf Third Party Advisory
https://dheatattack.com Third Party Advisory
https://dheatattack.gitlab.io/
https://github.com/Balasys/dheater Product
https://github.com/mozilla/ssl-config-generator/issues/162 Issue Tracking
https://gitlab.com/dheatattack/dheater
https://ieeexplore.ieee.org/document/10374117
https://support.f5.com/csp/article/K83120834 Third Party Advisory
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt Third Party Advisory
https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ Third Party Advisory
https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ Issue Tracking
https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol Exploit Technical Description
https://www.suse.com/support/kb/doc/?id=000020510 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:balasys:dheater:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_service_proxy:1.6.0:*:*:*:*:kubernetes:*:*
cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-iq_centralized_management:7.1.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-a:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-a:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-c:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-c:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-c:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.2.0:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
OR cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*
cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*
cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*
cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*
OR cpe:2.3:h:hpe:aruba_cx_4100i:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6100:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6200f:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6200m:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6300f:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6300m:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6405:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6410:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8320:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8325-32c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8325-48y8c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-12c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-16y2c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-24xf2c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-32y4c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-48xt4c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-48y6c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8400:-:*:*:*:*:*:*:*

Configuration 6 (hide)

OR cpe:2.3:a:stormshield:stormshield_management_center:*:*:*:*:*:*:*:*
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:*
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:*

History

20 Nov 2024, 23:42

Type Values Removed Values Added
References () https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory () https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory
References () https://dheatattack.com - Third Party Advisory () https://dheatattack.com - Third Party Advisory
References () https://dheatattack.gitlab.io/ - () https://dheatattack.gitlab.io/ -
References () https://github.com/Balasys/dheater - Product () https://github.com/Balasys/dheater - Product
References () https://github.com/mozilla/ssl-config-generator/issues/162 - Issue Tracking () https://github.com/mozilla/ssl-config-generator/issues/162 - Issue Tracking
References () https://gitlab.com/dheatattack/dheater - () https://gitlab.com/dheatattack/dheater -
References () https://ieeexplore.ieee.org/document/10374117 - () https://ieeexplore.ieee.org/document/10374117 -
References () https://support.f5.com/csp/article/K83120834 - Third Party Advisory () https://support.f5.com/csp/article/K83120834 - Third Party Advisory
References () https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt - Third Party Advisory () https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt - Third Party Advisory
References () https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ - Third Party Advisory () https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ - Third Party Advisory
References () https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Issue Tracking () https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Issue Tracking
References () https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Technical Description () https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Technical Description
References () https://www.suse.com/support/kb/doc/?id=000020510 - Third Party Advisory () https://www.suse.com/support/kb/doc/?id=000020510 - Third Party Advisory

23 Apr 2024, 07:15

Type Values Removed Values Added
References
  • () https://ieeexplore.ieee.org/document/10374117 -

16 Aug 2023, 14:17

Type Values Removed Values Added
CPE cpe:2.3:a:f5:traffix_sdc:5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:traffix_sdc:5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.2.0:*:*:*:*:*:*:*

19 Jul 2023, 00:55

Type Values Removed Values Added
CPE cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:*
cpe:2.3:a:stormshield:stormshield_management_center:*:*:*:*:*:*:*:*

16 May 2023, 16:15

Type Values Removed Values Added
References (MISC) https://www.suse.com/support/kb/doc/?id=000020510 - (MISC) https://www.suse.com/support/kb/doc/?id=000020510 - Third Party Advisory
References (MISC) https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Third Party Advisory (MISC) https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Technical Description
References (MISC) https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Third Party Advisory (MISC) https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Issue Tracking
References (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory
References (MISC) https://support.f5.com/csp/article/K83120834 - (MISC) https://support.f5.com/csp/article/K83120834 - Third Party Advisory
References (MISC) https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt - (MISC) https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt - Third Party Advisory
References (MISC) https://github.com/Balasys/dheater - Third Party Advisory (MISC) https://github.com/Balasys/dheater - Product
References (MISC) https://dheatattack.com - (MISC) https://dheatattack.com - Third Party Advisory
References (MISC) https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ - (MISC) https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ - Third Party Advisory
References (MISC) https://github.com/mozilla/ssl-config-generator/issues/162 - Third Party Advisory (MISC) https://github.com/mozilla/ssl-config-generator/issues/162 - Issue Tracking
CPE cpe:2.3:h:hpe:aruba_cx_8400:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:traffix_sdc:5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-c:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*
cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6410:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-48y6c:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6300f:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-48xt4c:-:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6200f:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-a:1.3.0:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6100:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-a:1.3.1:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:traffix_sdc:5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-c:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_4100i:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-16y2c:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8325-48y8c:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-24xf2c:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_service_proxy:1.6.0:*:*:*:*:kubernetes:*:*
cpe:2.3:h:hpe:aruba_cx_6200m:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6405:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-12c:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:f5os-c:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_6300m:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8320:-:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8360-32y4c:-:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-iq_centralized_management:7.1.0:*:*:*:*:*:*:*
cpe:2.3:h:hpe:aruba_cx_8325-32c:-:*:*:*:*:*:*:*

09 Nov 2022, 18:15

Type Values Removed Values Added
References
  • (MISC) https://www.suse.com/support/kb/doc/?id=000020510 -
  • (MISC) https://support.f5.com/csp/article/K83120834 -
  • (MISC) https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ -
  • (MISC) https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt -
  • (MISC) https://dheatattack.com -

08 Nov 2022, 14:15

Type Values Removed Values Added
References
  • (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf -

16 Nov 2021, 15:36

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : 5.0
v3 : 7.5
References (MISC) https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - (MISC) https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Third Party Advisory
References (MISC) https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - (MISC) https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Third Party Advisory
References (MISC) https://github.com/mozilla/ssl-config-generator/issues/162 - (MISC) https://github.com/mozilla/ssl-config-generator/issues/162 - Third Party Advisory
References (MISC) https://github.com/Balasys/dheater - (MISC) https://github.com/Balasys/dheater - Third Party Advisory
CWE CWE-400
CPE cpe:2.3:a:balasys:dheater:-:*:*:*:*:*:*:*

12 Nov 2021, 16:28

Type Values Removed Values Added
New CVE

Information

Published : 2021-11-11 19:15

Updated : 2024-11-20 23:42


NVD link : CVE-2002-20001

Mitre link : CVE-2002-20001

CVE.ORG link : CVE-2002-20001


JSON object : View

Products Affected

f5

  • big-ip_application_security_manager
  • big-ip_global_traffic_manager
  • big-ip_service_proxy
  • big-ip_websafe
  • big-ip_domain_name_system
  • big-ip_link_controller
  • big-iq_centralized_management
  • big-ip_advanced_web_application_firewall
  • big-ip_edge_gateway
  • f5os-a
  • big-ip_analytics
  • big-ip_policy_enforcement_manager
  • big-ip_application_acceleration_manager
  • big-ip_fraud_protection_service
  • big-ip_webaccelerator
  • big-ip_ssl_orchestrator
  • big-ip_application_visibility_and_reporting
  • f5os-c
  • big-ip_ddos_hybrid_defender
  • big-ip_local_traffic_manager
  • big-ip_carrier-grade_nat
  • traffix_signaling_delivery_controller
  • big-ip_advanced_firewall_manager
  • big-ip_access_policy_manager

hpe

  • aruba_cx_6300f
  • aruba_cx_6410
  • aruba_cx_6200f
  • aruba_cx_4100i
  • aruba_cx_8360-16y2c
  • aruba_cx_8360-48y6c
  • aruba_cx_8325-32c
  • aruba_cx_8360-24xf2c
  • aruba_cx_8400
  • aruba_cx_8360-48xt4c
  • aruba_cx_6200m
  • aruba_cx_6300m
  • aruba_cx_6100
  • aruba_cx_6405
  • aruba_cx_8325-48y8c
  • arubaos-cx
  • aruba_cx_8320
  • aruba_cx_8360-12c
  • aruba_cx_8360-32y4c

stormshield

  • stormshield_management_center
  • stormshield_network_security

siemens

  • scalance_w1750d_firmware
  • scalance_w1750d

suse

  • linux_enterprise_server

balasys

  • dheater
CWE
CWE-400

Uncontrolled Resource Consumption