Description
Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via (1) the ProcessOldClientHello function in handshake.cpp or (2) "input_buffer& operator>>" in yassl_imp.cpp.
Remediation
References
Related Vulnerabilities
WordPress Plugin Event Calendar WD-Responsive Event Calendar Cross-Site Scripting (1.0.93)
WordPress Plugin GNU-Mailman Integration Cross-Site Scripting (1.0.6)
Drupal Core 5.x SQL Injection (5.0 - 5.3)
Django Numeric Errors Vulnerability (CVE-2013-0306)
Oracle Database Server CVE-2010-0870 Vulnerability (CVE-2010-0870)