Lucene search
OpenSSLOPENSSL:CVE-2009-1377HistoryMay 12, 2009 - 12:00 a.m.
Vulnerability in OpenSSL CVE-2009-1377
2009-05-1200:00:00
www.openssl.org
9
8 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.058 Low
EPSS
Percentile
93.3%
Fix a denial of service flaw in the DTLS implementation. Records are buffered if they arrive with a future epoch to be processed after finishing the corresponding handshake. There is currently no limitation to this buffer allowing an attacker to perform a DOS attack to a DTLS server by sending records with future epochs until there is no memory left.
Related
f5
f5
SOL15366 - OpenSSL DTLS vulnerability CVE-2009-1377
2014-06-25 00:00:00
K15366 : OpenSSL DTLS vulnerability CVE-2009-1377
2014-06-25 00:00:00
cve
cve
CVE-2009-1377
2009-05-19 19:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:41:59
ubuntucve
ubuntucve
CVE-2009-1377
2009-05-19 00:00:00
debiancve
debiancve
CVE-2009-1377
2009-05-19 19:30:00
prion
prion
Design/Logic Flaw
2009-05-19 19:30:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:120 (openssl)
2009-06-05 00:00:00
Mandrake Security Advisory MDVSA-2009:120 (openssl)
2009-06-05 00:00:00
FreeBSD Ports: opensll
2009-06-05 00:00:00
nessus
nessus
FreeBSD : openssl -- denial of service in DTLS implementation (82b55df8-4d5a-11de-8811-0030843d3802)
2009-06-01 00:00:00
Mandriva Linux Security Advisory : openssl (MDVSA-2009:120)
2009-05-22 00:00:00
Fedora 10 : openssl-0.9.8g-14.fc10 (2009-5412)
2009-06-21 00:00:00
freebsd
freebsd
openssl -- denial of service in DTLS implementation
2009-05-18 00:00:00
seebug
seebug
OpenSSL DTLSๆฅๆๅคไธชๆ็ปๆๅกๆผๆด
2009-05-21 00:00:00
securityvulns
securityvulns
OpenSSL multiple security vulnerabilities
2009-05-21 00:00:00
[ MDVSA-2009:120 ] openssl
2009-05-21 00:00:00
Multiple OpenSSL DoS conditions
2009-06-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package openssl10 version 0.9.8k-alt2
2009-05-21 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8k-alt2
2009-05-21 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 0.9.8k-alt2
2009-05-21 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: openssl-0.9.8k-5.fc11
2009-06-19 13:42:48
[SECURITY] Fedora 10 Update: openssl-0.9.8g-14.fc10
2009-06-19 13:35:27
[SECURITY] Fedora 9 Update: openssl-0.9.8g-9.14.fc9
2009-06-19 13:40:57
ubuntu
ubuntu
OpenSSL vulnerabilities
2009-06-25 00:00:00
osv
osv
openssl - cryptographic weakness
2009-09-15 00:00:00
debian
debian
[SECURITY] [DSA 1888-1] New openssl packages deprecate MD2 hash signatures
2009-09-15 21:37:22
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2009-12-01 00:00:00
oraclelinux
oraclelinux
openssl security, bug fix, and enhancement update
2009-09-08 00:00:00
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2019-03-13 00:00:00
redhat
redhat
(RHSA-2009:1335) Moderate: openssl security, bug fix, and enhancement update
2009-09-02 09:47:12
centos
centos
openssl security update
2009-09-15 18:42:01
vmware
vmware
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
8 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.058 Low
EPSS
Percentile
93.3%
Related for OPENSSL:CVE-2009-1377