159 matches found
CVE-2008-0226
Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via 1 the ProcessOldClientHello function in handshake.cpp or 2 "inputbuffer& operator" in yasslimp.cpp...
CVE-2008-0227
yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allows remote attackers to cause a denial of service crash via a Hello packet containing a large size value, which triggers a buffer over-read in the HASHwithTransform::Update function in hash.cpp...
CVE-2008-0227
CVE-2008-0227 affects yaSSL 1.7.5 and earlier as used in MySQL and possibly other products. The issue allows remote attackers to cause a denial of service (crash) by sending a Hello packet with a large size value, triggering a buffer over-read in HASHwithTransform::Update (hash.cpp). Connected do...
CVE-2008-0226
CVE-2008-0226 describes a buffer overflow in yaSSL 1.7.5 and earlier, used by MySQL and possibly other products. The overflow occurs via crafted client Hello messages in handshake.cpp (ProcessOldClientHello) or operator>> in yassl_imp.cpp, enabling remote code execution. Exploitation histor...
CVE-2008-0226
Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via 1 the ProcessOldClientHello function in handshake.cpp or 2 "inputbuffer& operator" in yasslimp.cpp...
CVE-2008-0226
Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via 1 the ProcessOldClientHello function in handshake.cpp or 2 "inputbuffer& operator" in yasslimp.cpp...
CVE-2008-0227
yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allows remote attackers to cause a denial of service crash via a Hello packet containing a large size value, which triggers a buffer over-read in the HASHwithTransform::Update function in hash.cpp...
yaSSL多个远程溢出及无效内存访问漏洞
BUGTRAQ ID: 27140 yaSSL是用于实现SSL的开源软件包。 yaSSL实现上存在多个远程溢出及无效内存访问问题,远程攻击者可能利用此漏洞控制服务器。 ------------------------------------------- A ProcessOldClientHello缓冲区溢出 ------------------------------------------- 用于包含客户端所接收的Hello报文中的数据的缓冲区结构如下(源自yasslimp.hpp): class ClientHello : public HandShakeBase...
Pre-auth buffer-overflow in mySQL through yaSSL
The following is a proof-of-concept for testing the buffer-overflow which affects yaSSL = 1.7.5 on mySQL servers, any version, included the latest 6.0.3: http://aluigi.org/poc/mysqlo.zip The vulnerability is exploitable before authentication so the only requirements for testing it are the usage o...
MySQL <=6.0 yaSSL <= 1.7.5 Hello Message Buffer Overflow
MySQL yaSSL SSL Hello Message Buffer Overflow 1. 漏洞介绍和分析 yaSSL是用于实现SSL的开源软件包。 yaSSL实现上存在多个远程溢出及无效内存访问问题,远程攻击者可能利用此漏洞控制服务器。 向堆栈缓冲区溢出的yaSSL1.7.5和更早的版本实现与MySQL捆绑 = 6.0。通过发送一个专门制作的HEllo 包 ,攻击者可以执行任意代码。 代码分析: 用于包含客户端所接收的Hello报文中的数据的缓冲区结构如下源自yasslimp.hpp: class ClientHello : public HandShakeBase...
YaSSL library / MySQL multiple security vulnerabilities
Buffer overflows in ProcessOldClientHello and operator, memory exhaustion in HASHwithTransform::Update...
Multiple vulnerabilities in yaSSL 1.7.5
Luigi Auriemma Application: yaSSL http://www.yassl.com Versions: = 1.7.5 Platforms: Windows and nix Bugs: A buffer-overflow in ProcessOldClientHello B buffer-overflow in "inputbuffer& operator" C invalid memory access in HASHwithTransform::Update Exploitation: remote Date: 04 Jan 2008 Author: Lui...
MySQL 6.0 yaSSL 1.7.5 - Hello Message Buffer Overflow (Metasploit)
MySQL 6.0 yaSSL 1.7.5 - Hello Message Buffer Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
MySQL 6.0 yaSSL 1.7.5 - Hello Message Buffer Overflow (Metasploit)
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'MySQL yaSSL...
CVE-2005-3731
Unspecified vulnerability in yaSSL before 1.0.6 has unknown impact and attack vectors, related to "certificate chain processing."...
CVE-2005-3731
Technical details about CVE-2005-3731 are not provided in the supplied documents; no concrete information on affected versions, impact, or remediation is available here. Monitor for updates.
CVE-2005-3731
Unspecified vulnerability in yaSSL before 1.0.6 has unknown impact and attack vectors, related to "certificate chain processing."...
[SA17619] yaSSL Unspecified Certification Chain Processing Vulnerability
TITLE: yaSSL Unspecified Certification Chain Processing Vulnerability SECUNIA ADVISORY ID: SA17619 VERIFY ADVISORY: http://secunia.com/advisories/17619/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: yaSSL Library 1.x http://secunia.com/product/6145/ DESCRIPTION: A...
YaSSL certificate chain validation problem
No description provided...