CVE-2016-0797 in Xcodeinfo

Zusammenfassung

von MITRE

Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

16.12.2015

Veröffentlichung

02.03.2016

Moderieren

akzeptiert

Eintrag

Verknüpfen

zeigen

CPE

bereit

CWE

CWE-190 (bestätigt)

CVSS

7.5 (NVD)

EPSS

0.27022

KEV

nein

Aktivitäten

very low

Sektor

Hostingprovider, Telecommunication

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0797
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0797
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0797/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!