Vulnerability in OpenSSL (CVE-2014-0195)

2014-06-05T00:00:00
ID OPENSSL:CVE-2014-0195
Type openssl
Reporter OpenSSL
Modified 2014-06-05T00:00:00

Description

A buffer overrun attack can be triggered by sending invalid DTLS fragments to an OpenSSL DTLS client or server. This is potentially exploitable to run arbitrary code on a vulnerable client or server. Only applications using OpenSSL as a DTLS client or server affected. Reported by Jüri Aedla.