Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2015/08/18 12:0 a.m.4 views

The vulnerability of the OpenSSL library, which allows a hacker to trigger a service failure

The vulnerability of the rsaitemverify function in the OpenSSL library is related to pointer assignment errors. Exploiting this vulnerability could allow a malicious actor to cause service failures by using specially crafted RSA PSS parameters, when these parameters are processed with the...

4.3CVSS6.5AI score0.33482EPSS
Exploits0References6Affected Software1
Check Point Advisories
Check Point Advisories
added 2015/05/14 12:0 a.m.7 views

OpenSSL Invalid PSS Parameters Denial of Service (CVE-2015-0208)

A denial of service vulnerability exists in OpenSSL. The vulnerability is due to a null pointer dereference when an OpenSSL application receives and processes a crafted certificate containing invalid RSA PSS parameters. A remote, unauthenticated attacker can exploit this vulnerability by sending ...

4.3CVSS4.2AI score0.33482EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/24 12:0 a.m.37 views

GLSA-201503-11 : OpenSSL: Multiple vulnerabilities (FREAK)

The remote host is affected by the vulnerability described in GLSA-201503-11 OpenSSL: Multiple vulnerabilities Multiple vulnerabilities have been found in OpenSSL. Please review the CVE identifiers and the upstream advisory referenced below for details: RSA silently downgrades to EXPORTRSA Client...

7.5CVSS7.3AI score0.98685EPSS
Exploits1References15
Prion
Prion
added 2015/03/19 10:59 p.m.19 views

Null pointer dereference

The ASN.1 signature-verification implementation in the rsaitemverify function in crypto/rsa/rsaameth.c in OpenSSL 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service NULL pointer dereference and application crash via crafted RSA PSS parameters to an endpoint that uses the...

4.3CVSS6.8AI score0.33482EPSS
Exploits0References17Affected Software1
OpenSSL
OpenSSL
added 2015/03/19 12:0 a.m.37 views

Vulnerability in OpenSSL - Segmentation fault for invalid PSS parameters

Segmentation fault for invalid PSS parameters. The signature verification routines will crash with a NULL pointer dereference if presented with an ASN.1 signature using the RSA PSS algorithm and invalid parameters. Since these routines are used to verify certificate signature algorithms this can ...

6.1AI score0.33482EPSS
Exploits0Affected Software1
Rows per page
Query Builder