Description
Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-Predict 'predictId' Parameter Blind SQL Injection (1.0)
Moodle Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-26047)
Jboss EAP CVE-2013-1896 Vulnerability (CVE-2013-1896)
WordPress Plugin Easy Contact Forms Export 'file' Parameter Information Disclosure (1.1.0)