Description
Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.
Remediation
References
Related Vulnerabilities
ReviveAdserver Session Fixation Vulnerability (CVE-2017-5831)
WordPress Plugin Rockhoist Ratings SQL Injection (1.2.1)
WordPress Plugin WP-Predict 'predictId' Parameter Blind SQL Injection (1.0)
MySQL CVE-2015-0432 Vulnerability (CVE-2015-0432)
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Information Disclosure (5.1.2)