Description

The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.

Remediation

References

CVE-2012-1165

Related Vulnerabilities

WordPress Plugin Instagram Feed Cross-Site Scripting (1.5.1)

WordPress Plugin Injectbody Spam Injection (All)

WordPress Plugin Super Interactive Maps for WordPress Arbitrary File Upload (1.9)

WordPress Plugin Async JavaScript Security Bypass (2.19.07.14)

WordPress Plugin Recall Products Multiple Vulnerabilities (0.8)

Severity

Medium

Classification

CVE-2012-1165

Tags

Missing Update Known Vulnerabilities