Description
OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key.
Remediation
References
Related Vulnerabilities
Perl Out-of-bounds Write Vulnerability (CVE-2023-47039)
SharePoint Improper Privilege Management Vulnerability (CVE-2021-1712)
Oracle Database Server CVE-2023-22075 Vulnerability (CVE-2023-22075)
WordPress Plugin Broken Link Manager Cross-Site Scripting (0.5.5)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5479)