Description

Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible.

Remediation

References

CVE-2007-5135

Related Vulnerabilities

WordPress Plugin is_human() 'type' Parameter Remote Command Injection (1.4.2)

Moodle Other Vulnerability (CVE-2005-2247)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36399)

WordPress Plugin InfiniteWP Client Security Bypass (1.3.7)

Plupload Cross-site Scripting (XSS) Vulnerability (CVE-2016-4566)

Severity

Medium

Classification

CVE-2007-5135

Tags

Missing Update Known Vulnerabilities