Description
Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attackers to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2023-22069 Vulnerability (CVE-2023-22069)
MySQL Other Vulnerability (CVE-2004-0457)
Apache read beyond bounds via ap_rwrite() Vulnerability (CVE-2022-28614)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5492)
OpenSSL Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4044)