Description
Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted TLS packet that is not properly handled during a certain explicit IV calculation.
Remediation
References
Related Vulnerabilities
Jenkins Improper Access Control Vulnerability (CVE-2015-5325)
WordPress Plugin Relocate Upload 'abspath' Parameter Remote File Include (0.14)
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7)
WordPress Plugin Injectbody Spam Injection (All)
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-1927)