WEB APPLICATION VULNERABILITIES Standard & Premium

OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-0590)

Description

The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.

Remediation

References

Related Vulnerabilities

Artifactory CVE-2019-9733 Vulnerability (CVE-2019-9733)

MySQL CVE-2020-14540 Vulnerability (CVE-2020-14540)

Plone CMS Cryptographic Issues Vulnerability (CVE-2012-6661)

CubeCart Improper Authentication Vulnerability (CVE-2014-2341)

WordPress Plugin Yoast SEO Cross-Site Scripting (3.2.5)

Severity

Medium

Classification

CVE-2009-0590 CWE-119

Tags

Missing Update Known Vulnerabilities