CVE-2002-1568

OpenSSL 0.9.6e uses assertions when detecting buffer overflow attacks instead of less severe mechanisms, which allows remote attackers to cause a denial of service (crash) via certain messages that cause OpenSSL to abort from a failed assertion, as demonstrated using SSLv2 CLIENT_MASTER_KEY messages, which are not properly handled in s2_srvr.c.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:openssl:openssl:0.9.6e:*:*:*:*:*:*:*

Information

Published : 2003-11-16 21:00

Updated : 2016-10-17 19:27


NVD link : CVE-2002-1568

Mitre link : CVE-2002-1568


JSON object : View

Advertisement

dedicated server usa

Products Affected

openssl

  • openssl