Описание
Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.
Ссылки
- Broken LinkVendor Advisory
- Broken Link
- Third Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryUS Government Resource
- Broken LinkPatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkPatchVendor Advisory
- Broken Link
- Broken Link
- Broken LinkVendor Advisory
- Broken Link
- Third Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryUS Government Resource
- Broken LinkPatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkPatchVendor Advisory
- Broken Link
- Broken Link
Уязвимые конфигурации
Одно из
EPSS
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
Связанные уязвимости
Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.
Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to ...
Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
9.8 Critical
CVSS3
10 Critical
CVSS2