Description
OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c.
Remediation
References
Related Vulnerabilities
MySQL CVE-2024-21101 Vulnerability (CVE-2024-21101)
WordPress Plugin WP Content Copy Protection & No Right Click Security Bypass (3.1.4)
WordPress Plugin Simple Events Calendar Multiple Vulnerabilities (1.3.5)
WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.17)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-6830)