12 matches found
K8837: OpenSSL DTLS off-by-one error - CVE-2007-4995
Security Advisory Description Note : Versions that are not listed in this Solution have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the ...
Fedora Update for openssl FEDORA-2007-2530
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for openssl FEDORA-2007-725
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 4559)
A buffer overflow in the DTLS implementation of openssl could be exploited by attackers to potentially execute arbitrary code. CVE-2007-4995 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...
openSUSE 10 Security Update : libopenssl-devel (libopenssl-devel-4560)
A buffer overflow in the DTLS implementation of openssl could be exploited by attackers to potentially execute arbitrary code CVE-2007-4995. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
OpenSSL Vulnerability CVE-2007-4995
...
Fedora Core 6 : openssl-0.9.8b-15.fc6 (2007-725)
Fri Oct 12 2007 Tomas Mraz 0.9.8b-15 - fix CVE-2007-5135 - off-by-one in SSLgetsharedciphers 309801 - fix CVE-2007-4995 - out of order DTLS fragments buffer overflow 321191 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...
OpenSSL DTLS远程堆溢出漏洞
BUGTRAQ ID: 26055 CVECAN ID: CVE-2007-4995 OpenSSL是一种开放源码的SSL实现,用来实现网络通信的高强度加密,现在被广泛地用于各种网络应用程序中。 OpenSSL的DTLS支持中存在漏洞,攻击者可以创建能够触发堆溢出的恶意客户端或服务器,导致执行任意指令。 请注意这个漏洞仅影响使用DTLS的应用程序。 OpenSSL Project OpenSSL 0.9.8f OpenSSL Project OpenSSL 0.9.8 RedHat Linux 5.0 OpenSSL Project ---------------...
CVE-2007-4995
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2007-4995
CVE-2007-4995 describes an off-by-one error in the DTLS implementation of OpenSSL 0.9.8 prior to 0.9.8f that could allow a remote attacker to execute arbitrary code via unspecified vectors. Multiple connected advisories confirm this DTLS flaw and the need to upgrade OpenSSL to a fixed release (0....
CVE-2007-4995
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors...
Vulnerability in OpenSSL CVE-2007-4995
A flaw in DTLS support. An attacker could create a malicious client or server that could trigger a heap overflow. This is possibly exploitable to run arbitrary code, but it has not been verified. Found by Andy Polyakov...