CVE-2016-2180 in OpenSSLinformación

Resumen (Inglés)

The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted time-stamp file that is mishandled by the "openssl ts" command.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

2016-01-29

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
91903	OpenSSL TS_OBJ_print_bio desbordamiento de búfer	119	No está definido	Arreglo oficial	CVE-2016-2180
90396	OpenSSL ts_lib.c TS_OBJ_print_bio divulgación de información	125	No está definido	Arreglo oficial	CVE-2016-2180

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

◂ AnteriorVisión De ConjuntoPróximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!