Lucene search
K

1575 matches found

OSV
OSV
added 2002/08/12 4:0 a.m.9 views

CVE-2002-0655

OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code...

7.1AI score
Exploits0References8
OpenSSL
OpenSSL
added 2002/08/08 12:0 a.m.33 views

Vulnerability in OpenSSL CVE-2002-1568

The use of assertions when detecting buffer overflow attacks allowed remote attackers to cause a denial of service crash by sending certain messages to cause OpenSSL to abort from a failed assertion, as demonstrated using SSLv2 CLIENTMASTERKEY messages, which were not properly handled in s2srvr.c...

7.5AI score0.02733EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2002/07/31 4:0 a.m.35 views

CVE-2002-0659

The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings...

8.2AI score0.36039EPSS
Exploits1References11
EUVD
EUVD
added 2002/07/31 4:0 a.m.6 views

EUVD-2002-0653

The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings...

5CVSS7.2AI score0.36039EPSS
Exploits1References18
Debian CVE
Debian CVE
added 2002/07/31 4:0 a.m.44 views

CVE-2002-0655

OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code...

7.5CVSS6.9AI score0.08169EPSS
Exploits0
OpenSSL
OpenSSL
added 2002/07/30 12:0 a.m.45 views

Vulnerability in OpenSSL CVE-2002-0655

Inproper handling of ASCII representations of integers on 64 bit platforms allowed remote attackers to cause a denial of service or possibly execute arbitrary code. Found by OpenSSL Group A.L. Digital...

9.7AI score0.08169EPSS
Exploits0Affected Software1
exploitpack
exploitpack
added 2002/07/30 12:0 a.m.53 views

Apache mod_ssl 2.8.7 OpenSSL - OpenFuck.c Remote Buffer Overflow

Apache modssl 2.8.7 OpenSSL - OpenFuck.c Remote Buffer Overflow / source: https://www.securityfocus.com/bid/5363/info A buffer-overflow vulnerability has been reported in some versions of OpenSSL. The issue occurs in the handling of the client key value during the negotiation of the SSLv2 protoco...

0.8AI score
Exploits0
OpenSSL
OpenSSL
added 2002/07/30 12:0 a.m.144 views

Vulnerability in OpenSSL CVE-2002-0656

A buffer overflow allowed remote attackers to execute arbitrary code by sending a large client master key in SSL2 or a large session ID in SSL3. Found by OpenSSL Group A.L. Digital...

9.7AI score0.8982EPSS
Exploits2Affected Software1
Exploit DB
Exploit DB
added 2002/07/30 12:0 a.m.207 views

OpenSSL SSLv2 - Malformed Client Key Remote Buffer Overflow Vulnerability 2

OpenSSL SSLv2 Malformed Client Key Remote Buffer Overflow Vulnerability 2. CVE-2002-0656. Remote exploit for unix platform source: http://www.securityfocus.com/bid/5363/info A buffer-overflow vulnerability has been reported in some versions of OpenSSL. The issue occurs in the handling of the clie...

7.5CVSS0.2AI score0.8982EPSS
Exploits2
CERT
CERT
added 2002/07/30 12:0 a.m.69 views

OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process

Overview OpenSSL is an open-source implementation of the Secure Sockets Layer SSL protocol. A remotely exploitable vulnerability exists in OpenSSL servers that could lead to the execution of arbitrary code on the system Description Servers running OpenSSL pre-release version 0.9.7 with Kerberos...

9.6AI score
Exploits0References2
CERT
CERT
added 2002/07/30 12:0 a.m.45 views

OpenSSL clients contain a buffer overflow during the SSL3 handshake process

Overview OpenSSL is an open-source implementation of the Secure Sockets Layer SSL protocol. A remotely exploitable vulnerability exists in OpenSSL clients that could lead to the execution of arbitrary code on the client's system. Description OpenSSL clients using SSLv3 prior to version 0.9.6e and...

9.5AI score
Exploits0References2
CERT
CERT
added 2002/07/30 12:0 a.m.44 views

OpenSSL servers contain a buffer overflow during the SSL2 handshake process

Overview OpenSSL is an open-source implementation of the Secure Sockets Layer SSL protocol. A remotely exploitable vulnerability exists in OpenSSL servers that could lead to the execution of arbitrary code on the server. Description Versions of OpenSSL servers prior to 0.9.6e and pre-release...

9.5AI score
Exploits0References1
securityvulns
securityvulns
added 2001/08/16 12:0 a.m.30 views

qmail starttls patch does not seed the random number generator

openssl-0.9.6b does not allow ssl/tls connections when the random number has not been seeded. This is a good idea, and it exposes that the starttls patch for qmail does not seed the random number generator. Here is a small patch that fixes the problem in qmail-remote for systems that support...

Exploits0
Positive Technologies
Positive Technologies
added 1999/01/01 12:0 a.m.9 views

PT-2014-1693

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to 1.0.1i OpenSSL through 1.0.1i PAN-OS versions 6.1.1 and earlier PAN-OS versions 6.0.7 and earlier PAN-OS versions 5.1.x and 5.0.x EOS versions 4.12.0 through 4.12.7.1 EOS versions 4.13.0 through 4.13.6 Apple mac os x...

4.3CVSS8.7AI score0.99999EPSS
Exploits7
Positive Technologies
Positive Technologies
added 1970/01/01 12:0 a.m.12 views

PT-2014-9091

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to 0.9.8za OpenSSL versions prior to 1.0.0m OpenSSL versions prior to 1.0.1h Description The issue exists due to incorrect restriction of ChangeCipherSpec message processing in OpenSSL, allowing a man-in-the-middle...

10CVSS8.7AI score0.99999EPSS
Exploits226References888
Rows per page
Query Builder