Lucene search
OpenSSLOPENSSL:CVE-2002-1568HistoryAug 08, 2002 - 12:00 a.m.
Vulnerability in OpenSSL CVE-2002-1568
2002-08-0800:00:00
www.openssl.org
7
7.6 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.011 Low
EPSS
Percentile
84.3%
The use of assertions when detecting buffer overflow attacks allowed remote attackers to cause a denial of service (crash) by sending certain messages to cause OpenSSL to abort from a failed assertion, as demonstrated using SSLv2 CLIENT_MASTER_KEY messages, which were not properly handled in s2_srvr.c.
- Fixed in OpenSSL 0.9.6f (git commit) (Affected since 0.9.6e)
Related
debiancve
debiancve
CVE-2002-1568
2003-11-17 05:00:00
cve
cve
CVE-2002-1568
2003-11-17 05:00:00
openvas
openvas
OpenSSL 0.9.6e DoS Vulnerability
2020-11-06 00:00:00
nessus
nessus
OpenSSL < 0.9.6f Denial of Service
2012-01-04 00:00:00
RHEL 2.1 : openssl (RHSA-2002:157)
2004-07-06 00:00:00
kitploit
kitploit
7.6 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.011 Low
EPSS
Percentile
84.3%
Related for OPENSSL:CVE-2002-1568