Description

Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted TLS packet that is not properly handled during a certain explicit IV calculation.

Remediation

References

CVE-2012-2333

Related Vulnerabilities

WordPress Plugin Site Analytics Multiple Vulnerabilities (1.4.3)

WordPress Plugin WP Link To Us Multiple Cross-Site Scripting Vulnerabilities (2.0)

MySQL CVE-2021-2230 Vulnerability (CVE-2021-2230)

WordPress Plugin Post Form-Registration Form-Profile Form for User Profiles and Content Forms for User Submissions SQL Injection (2.2.7)

Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2022-29224)

Severity

Medium

Classification

CVE-2012-2333

Tags

Missing Update Known Vulnerabilities