CVE-2002-0082

creationtimestamp| type| source ---|---|--- 2022-03-05 03:55:41+00:00| published-proof-of-concept| Telegram/7getcuuCBvOJlDZLwM2Jbu9f-MHeOexi-Nolpbnamm9eA 2025-03-24 10:00:05+00:00| published-proof-of-concept| Telegram/As92OAZC29RxaApN-TJBcdYpVfrjZ9mNHg9UZQxtQM37C4s 2025-03-26 21:02:05+00:00| seen...

SOL4119 - Buffer overflow in mod_ssl - CVE-2002-0082

Information about this advisory is available at the following location: Note: This link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge...

CVE-2002-0082

CVE-2002-0082 affects mod_ssl and Apache-SSL where memory is not properly initialized during SSL_SESSION serialization (i2d_SSL_SESSION), enabling a remote attacker to trigger a buffer overflow with a large client certificate signed by a trusted CA. This can lead to arbitrary code execution on vu...

Apache-SSL < 1.3.23+1.46 i2d_SSL_SESSION Function SSL Client Certificate Overflow

The remote host is using a version of Apache-SSL that is older than 1.3.22+1.46. Such versions are vulnerable to a buffer overflow that, albeit difficult to exploit, may allow an attacker to execute arbitrary commands on this host subject to the privileges under which the web server operates. C...

CVE-2002-0082

The dbm and shm session cache code in modssl before 2.8.7-1.3.23, and Apache-SSL before 1.3.22+1.46, does not properly initialize memory using the i2dSSLSESSION function, which allows remote attackers to use a buffer overflow to execute arbitrary code via a large client certificate that is signed...

Apache mod_ssl i2d_SSL_SESSION Function SSL Client Certificate Overflow

According to the web server banner, the remote host is using a vulnerable version of modssl. This version has a buffer overflow vulnerability. A remote attacker could exploit this issue to execute arbitrary code. Some vendors patched older versions of modssl, so this might be a false positive...