CVE-2016-2179 in Business Intelligence Enterprise Editionالمعلومات

الملخص

بحسب MITRE

The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-order messages, which allows remote attackers to cause a denial of service (memory consumption) by maintaining many crafted DTLS sessions simultaneously, related to d1_lib.c, statem_dtls.c, statem_lib.c, and statem_srvr.c.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

29/01/2016

إفشاء

16/09/2016

الاعتدال

تمت الموافقة

إدخال

3

ربط

عرض

استغلال

تحميل

EPSS

0.26559

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!