During the parsing of certain invalid ASN.1 structures an error condition is mishandled. This can result in an infinite loop which consumes system memory.

prion 1

debiancve 1

cve 2

cert 3

ubuntucve 1

altlinux 3

nessus 41

openvas 64

freebsd_advisory 1

f5 4

osv 1

gentoo 2

ubuntu 1

slackware 1

suse 1

redhat 4

centos 2

debian 1

freebsd 1

oraclelinux 5

securityvulns 2

vmware 2

seebug 1

prion

Design/Logic Flaw

2006-09-28 18:07:00

debiancve

CVE-2006-2937

2006-09-28 18:07:00

cve

CVE-2006-2937

2006-09-28 18:07:00

CVE-2006-2938

2007-11-27 00:46:00

cert

OpenSSL may fail to properly parse invalid ASN.1 structures

2006-09-28 00:00:00

OpenSSL SSL_get_shared_ciphers() vulnerable to buffer overflow

2006-09-28 00:00:00

OpenSSL SSLv2 client code fails to properly check for NULL

2006-09-28 00:00:00

ubuntucve

CVE-2006-2937

2006-09-28 00:00:00

altlinux

Security fix for the ALT Linux 8 package openssl10 version 0.9.7g-alt5

2006-09-27 00:00:00

Security fix for the ALT Linux 9 package openssl1.1 version 0.9.7g-alt5

2006-09-27 00:00:00

Security fix for the ALT Linux 9 package openssl10 version 0.9.7g-alt5

2006-09-27 00:00:00

nessus

RHEL 2.1 / 3 / 4 : openssl (RHSA-2006:0695)

2006-09-29 00:00:00

GLSA-200612-11 : AMD64 x86 emulation base libraries: OpenSSL multiple vulnerabilities

2006-12-14 00:00:00

FreeBSD : OpenSSL -- Multiple problems in crypto(3) (0f37d765-c5d4-11db-9f82-000e0c2e438a)

2007-02-27 00:00:00

openvas

Gentoo Security Advisory GLSA 200610-11 (openssl)

2008-09-24 00:00:00

Slackware: Security Advisory (SSA:2006-272-01)

2012-09-10 00:00:00

FreeBSD Ports: openssl

2008-09-04 00:00:00

freebsd_advisory

FreeBSD-SA-06:23.openssl

2006-09-28 00:00:00

K6734 : Local OpenSSL vulnerabilities VU#547300 and VU#386964, CAN-2006-3738, CAN-2006-2940, CAN-2006-2937, CAN-2006-4343

2013-03-27 00:00:00

SOL6734 - Local OpenSSL vulnerabilities VU#547300 and VU#386964, CAN-2006-3738, CAN-2006-2940, CAN-2006-2937, CAN-2006-4343

2007-05-16 00:00:00

SOL8106 - OpenSSL SSL_get_shared_ciphers vulnerability CVE-2007-5135

2007-11-15 00:00:00

osv

openssl

2006-09-28 00:00:00

gentoo

OpenSSL: Multiple vulnerabilities

2006-10-24 00:00:00

AMD64 x86 emulation base libraries: OpenSSL multiple vulnerabilities

2006-12-11 00:00:00

ubuntu

openssl vulnerabilities

2006-09-29 00:00:00

slackware

[slackware-security] openssl

2006-09-29 07:57:13

suse

remote denial of service in openssl

2006-09-28 16:40:53

redhat

(RHSA-2006:0695) openssl security update

2006-09-28 00:00:00

(RHSA-2008:0629) Moderate: Red Hat Network Satellite Server Solaris client security update

2008-08-13 00:00:00

(RHSA-2008:0264) Moderate: Red Hat Network Satellite Server Solaris client security update

2008-05-20 00:00:00

centos

openssl, openssl095a, openssl096 security update

2006-10-02 01:43:05

openssl, openssl096b security update

2006-09-29 03:35:21

debian

[SECURITY] [DSA 1185-1] New openssl packages fix denial of service

2006-09-28 17:28:09

freebsd

OpenSSL -- Multiple problems in crypto(3)

2006-09-28 00:00:00

oraclelinux

Important openssl security update

2006-11-30 00:00:00

Important openssl security update

2006-11-30 00:00:00

openssl-fips security update

2015-04-02 00:00:00

securityvulns

[OpenPKG-SA-2006.021] OpenPKG Security Advisory (openssl)

2006-09-29 00:00:00

VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues

2008-03-18 00:00:00

vmware

Several critical security vulnerabilities have been addressed in the newest releases of VMware's hosted product line

2008-03-17 00:00:00

Several critical security vulnerabilities have been addressed in the newest releases of VMware's hosted product line

2008-03-17 00:00:00

seebug

Apple Mac OS X 2006-007存在多个安全漏洞

2006-11-29 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.5 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.146 Low

EPSS

Percentile

95.7%

JSON

Related for OPENSSL:CVE-2006-2937