Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2012-1165

Опубликовано: 12 мар. 2012
Источник: redhat
CVSS2: 5
EPSS Низкий

Описание

The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4opensslWill not fix
Red Hat Enterprise Linux 4openssl096bWill not fix
Red Hat Enterprise Linux 5openssl097aWill not fix
Red Hat Enterprise Linux 6openssl098eWill not fix
Red Hat JBoss Enterprise Web Server 1opensslAffected
Red Hat Enterprise Linux 5opensslFixedRHSA-2012:042627.03.2012
Red Hat Enterprise Linux 6opensslFixedRHSA-2012:042627.03.2012
Red Hat JBoss Enterprise Application Platform 5.1FixedRHSA-2012:130724.09.2012
Red Hat JBoss Enterprise Application Platform 6.0FixedRHSA-2012:130824.09.2012
Red Hat JBoss Web Server 1.0FixedRHSA-2012:130624.09.2012

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-476
https://bugzilla.redhat.com/show_bug.cgi?id=802489openssl: mime_param_cmp NULL dereference crash

EPSS

Процентиль: 92%
0.07756
Низкий

5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2012-1165

ubuntu
больше 13 лет назад

The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.

nvd логотип

CVE-2012-1165

nvd
больше 13 лет назад

The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.

debian логотип

CVE-2012-1165

debian
больше 13 лет назад

The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL befor ...

github логотип

GHSA-9vv4-xxfm-24ff

github
больше 3 лет назад

The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.

oracle-oval логотип

ELSA-2012-0426

oracle-oval
больше 13 лет назад

ELSA-2012-0426: openssl security and bug fix update (MODERATE)

EPSS

Процентиль: 92%
0.07756
Низкий

5 Medium

CVSS2