Description

Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via (1) the ProcessOldClientHello function in handshake.cpp or (2) "input_buffer& operator>>" in yassl_imp.cpp.

Remediation

References

CVE-2008-0226

Related Vulnerabilities

WordPress Plugin WP Cost Estimation & Payment Forms Builder Multiple Vulnerabilities (9.642)

WordPress Plugin sourceAFRICA Cross-Site Scripting (0.1.3)

IBM WebSEAL Improper Input Validation Vulnerability (CVE-2021-20496)

WordPress Plugin ForumConverter SQL Injection (1.11)

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5492)

Severity

High

Classification

CVE-2008-0226 CWE-119

Tags

Missing Update Known Vulnerabilities