4 matches found
MatrixSSL < 3.9.3 Multiple Vulnerabilities
MatrixSSL is prone multiple vulnerabilities. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2017-2781
An exploitable heap buffer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a buffer overflow on the heap resulting in remote code execution. To trigger this vulnerability, a specially...
CVE-2017-2781
CVE-2017-2781 concerns InsideSecure MatrixSSL 3.8.7b. The vulnerability is a heap-based buffer overflow in the X509 certificate parsing code, specifically in the IssuerPolicy/PolicyMappings handling inside parsePolicyMappings. A specially crafted DER-encoded X.509 certificate (containing OID sequ...
Vulnerability Spotlight: Multiple Vulnerabilities in InsideSecure MatrixSSL
These vulnerabilities were discovered by Aleksandar Nikolic of Cisco TalosOverviewMatrixSSL is a TLS/SSL stack offered in the form of a Software Development Kit SDK that is geared towards application in Internet of Things IOT devices and other embedded systems. It features low resource overhead a...