Lucene search
K

9 matches found

BDU FSTEC
BDU FSTEC
added 2020/06/26 12:0 a.m.5 views

The vulnerability of the asn1_d2i_read_bio function (crypto/asn1/a_d2i_fp.c) in the OpenSSL library allows a attacker to cause a service failure.

The vulnerability of the asn1d2ireadbio function crypto/asn1/ad2ifp.c in the OpenSSL library is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS7AI score0.2921EPSS
Exploits1References7Affected Software21
Veracode
Veracode
added 2019/01/15 8:50 a.m.42 views

Denial Of Service (DoS) Through Memory Consumption And Buffer Overflow

OpenSSL is vulnerable to denial of service DoS attacks and possible other attacks. These attacks are possible because the asn1d2ireadbio function doesn't correctly interpret integer data which can be leveraged to do buffer overflow attacks or cause memory consumption...

7.5CVSS8.4AI score0.48298EPSS
Exploits8References41Affected Software2
CVE
CVE
added 2016/05/05 12:0 a.m.303 views

CVE-2016-2109

CVE-2016-2109 is a denial-of-service in OpenSSL: memory exhaustion caused by a short, invalid ASN.1 encoding read via BIO in the asn1_d2i_read_bio path. Affected are OpenSSL builds before 1.0.1t and 1.0.2 before 1.0.2h. Remediation is to upgrade to OpenSSL 1.0.1t or 1.0.2h (or later). This is sup...

7.8CVSS8AI score0.2921EPSS
Exploits1References55Affected Software1
Debian CVE
Debian CVE
added 2016/05/05 12:0 a.m.39 views

CVE-2016-2109

The asn1d2ireadbio function in crypto/asn1/ad2ifp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service memory consumption via a short invalid encoding...

7.8CVSS8.6AI score0.2921EPSS
Exploits1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.34 views

Oracle: Security Advisory (ELSA-2014-0626)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.95326EPSS
Exploits17References2
Oracle linux
Oracle linux
added 2012/04/25 12:0 a.m.58 views

openssl security update

openssl: 1.0.0-20.4 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185 openssl098e: 0.9.8e-17.el62.2 - Updated the description 0.9.8e-17.2 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185...

7.5CVSS1.7AI score0.48298EPSS
Exploits8
securityvulns
securityvulns
added 2012/04/24 12:0 a.m.92 views

OpenSSL memory corruption

Memory corruption in asn1d2ireadbio/SMIMEreadPKCS7/SMIMEreadCMS...

7.5CVSS1.8AI score0.48298EPSS
Exploits8References2Affected Software1
Prion
Prion
added 2012/04/19 5:55 p.m.22 views

Buffer overflow

The asn1d2ireadbio function in crypto/asn1/ad2ifp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service memory corruption or possibly have...

7.5CVSS8AI score0.48298EPSS
Exploits8References39Affected Software1
UbuntuCve
UbuntuCve
added 2012/04/19 12:0 a.m.41 views

CVE-2012-2110

The asn1d2ireadbio function in crypto/asn1/ad2ifp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service memory corruption or possibly have...

7.5CVSS7AI score0.48298EPSS
Exploits8References3
Rows per page
Query Builder