CVE-2016-2108 in Mac OS Xinformazioni

Riassunto

di MITRE

The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers to execute arbitrary code or cause a denial of service (buffer underflow and memory corruption) via an ANY field in crafted serialized data, aka the "negative zero" issue.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

29/01/2016

Divulgazione

04/05/2016

Moderazione

accettato

Voce

Collegare

mostrare

CPE

pronto

CWE

CWE-119 (confermato)

CVSS

9.8 (NVD)

EPSS

0.77906

KEV

Attività

molto basso

Settore

Transportation, Telecommunication, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2108
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2108
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2108/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you need the next level of professionalism?

Upgrade your account now!