Description
d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.
Remediation
References
Related Vulnerabilities
MySQL CVE-2018-2781 Vulnerability (CVE-2018-2781)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1000395)
MySQL CVE-2024-21096 Vulnerability (CVE-2024-21096)
WordPress Plugin EZPZ One Click Backup 'mail' Parameter Cross-Site Scripting (12.03.10)
Oracle Application Server Other Vulnerability (CVE-2005-1496)