Summary
Long exponents are permitted under the Diffie-Hellman Key Agreement Protocol, making some calculations needlessly expensive. When there are sufficient subgroup constraints, it is possible to utilize appropriately small exponents, which results in less expensive calculations. The particulars of the DHE implementation and the protocol (such as TLS, SSH, or IKE) will determine the circumstances in which calculation expense would represent a server-side vulnerability. Due to server-side resource usage from DHE modular-exponentiation calculations, availability is a concern. This vulnerability and CVE-2002-20001 can both be used by an attacker.
Products not listed in the Products Potentially Affected section have not been evaluated. Furthermore, products that have exceeded any software maintenance time periods are also not evaluated and will not be published. Please consult End of Sale and End of Service Life - Extreme Networks for the EOL notices related to the product under question.
Products Potentially Affected
| OS/Product |
Exposure |
| 200-series |
Yes |
| Switch Engine (EXOS) |
No |
|
Repair Recommendations
- 200-series:
- Switch Engine (EXOS):
Please see the full Security Advisory article here for more details and updated information.
