OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
20 Nov 2024, 23:39
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.0.txt - | |
References | () ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.1.txt - | |
References | () ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:33.openssl.asc - | |
References | () http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000513 - | |
References | () http://www.cert.org/advisories/CA-2002-23.html - US Government Resource | |
References | () http://www.kb.cert.org/vuls/id/308891 - US Government Resource | |
References | () http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-046.php - | |
References | () http://www.securityfocus.com/bid/5364 - |
Information
Published : 2002-08-12 04:00
Updated : 2024-11-20 23:39
NVD link : CVE-2002-0655
Mitre link : CVE-2002-0655
CVE.ORG link : CVE-2002-0655
JSON object : View
Products Affected
openssl
- openssl
oracle
- application_server
- http_server
- corporate_time_outlook_connector
apple
- mac_os_x
CWE