CVE-2016-0797 in Xcodeinformation

Résumé

par MITRE

Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

16/12/2015

Divulgation

02/03/2016

Modérer

accepté

Entrée

Relier

afficher

CPE

prêt

CWE

CWE-190 (confirmé)

CVSS

7.5 (NVD)

EPSS

0.27022

KEV

non

Activités

très faible

Secteur

Telecommunication, Hostingprovider

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0797
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0797
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0797/

◂ Précédent Aperçu Suivant ▸

Do you need the next level of professionalism?

Upgrade your account now!