Lucene search
K

12 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:6 p.m.37 views

K8837: OpenSSL DTLS off-by-one error - CVE-2007-4995

Security Advisory Description Note : Versions that are not listed in this Solution have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the ...

9.3CVSS8.5AI score0.11164EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.28 views

Fedora Update for openssl FEDORA-2007-2530

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

9.3CVSS7.3AI score0.16061EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.33 views

Fedora Update for openssl FEDORA-2007-725

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

9.3CVSS7.3AI score0.16061EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.62 views

SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 4559)

A buffer overflow in the DTLS implementation of openssl could be exploited by attackers to potentially execute arbitrary code. CVE-2007-4995 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

9.3CVSS8.2AI score0.11164EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2007/10/24 12:0 a.m.36 views

openSUSE 10 Security Update : libopenssl-devel (libopenssl-devel-4560)

A buffer overflow in the DTLS implementation of openssl could be exploited by attackers to potentially execute arbitrary code CVE-2007-4995. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

9.3CVSS8.2AI score0.11164EPSS
Exploits1References1
CheckPoint Security
CheckPoint Security
added 2007/10/16 10:0 p.m.27 views

OpenSSL Vulnerability CVE-2007-4995

...

9.3CVSS1.7AI score0.11164EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/10/16 12:0 a.m.36 views

Fedora Core 6 : openssl-0.9.8b-15.fc6 (2007-725)

Fri Oct 12 2007 Tomas Mraz 0.9.8b-15 - fix CVE-2007-5135 - off-by-one in SSLgetsharedciphers 309801 - fix CVE-2007-4995 - out of order DTLS fragments buffer overflow 321191 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

9.3CVSS7.2AI score0.16061EPSS
Exploits1References3
seebug.org
seebug.org
added 2007/10/15 12:0 a.m.68 views

OpenSSL DTLS远程堆溢出漏洞

BUGTRAQ ID: 26055 CVECAN ID: CVE-2007-4995 OpenSSL是一种开放源码的SSL实现,用来实现网络通信的高强度加密,现在被广泛地用于各种网络应用程序中。 OpenSSL的DTLS支持中存在漏洞,攻击者可以创建能够触发堆溢出的恶意客户端或服务器,导致执行任意指令。 请注意这个漏洞仅影响使用DTLS的应用程序。 OpenSSL Project OpenSSL 0.9.8f OpenSSL Project OpenSSL 0.9.8 RedHat Linux 5.0 OpenSSL Project ---------------...

9.3CVSS7.3AI score0.11164EPSS
Exploits1
OSV
OSV
added 2007/10/13 1:17 a.m.8 views

CVE-2007-4995

Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors...

8.2AI score
Exploits0References31
CVE
CVE
added 2007/10/13 1:0 a.m.915 views

CVE-2007-4995

CVE-2007-4995 describes an off-by-one error in the DTLS implementation of OpenSSL 0.9.8 prior to 0.9.8f that could allow a remote attacker to execute arbitrary code via unspecified vectors. Multiple connected advisories confirm this DTLS flaw and the need to upgrade OpenSSL to a fixed release (0....

9.3CVSS7.3AI score0.11164EPSS
Exploits1References31Affected Software1
UbuntuCve
UbuntuCve
added 2007/10/12 12:0 a.m.36 views

CVE-2007-4995

Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors...

9.3CVSS7.3AI score0.11164EPSS
Exploits1References2
OpenSSL
OpenSSL
added 2007/10/12 12:0 a.m.34 views

Vulnerability in OpenSSL CVE-2007-4995

A flaw in DTLS support. An attacker could create a malicious client or server that could trigger a heap overflow. This is possibly exploitable to run arbitrary code, but it has not been verified. Found by Andy Polyakov...

7.2AI score0.11164EPSS
Exploits1Affected Software1
Rows per page
Query Builder