CVE-2015-0290 in OpenSSL정보

요약 (영어)

The multi-block feature in the ssl3_write_bytes function in s3_pkt.c in OpenSSL 1.0.2 before 1.0.2a on 64-bit x86 platforms with AES NI support does not properly handle certain non-blocking I/O cases, which allows remote attackers to cause a denial of service (pointer corruption and application crash) via unspecified vectors.

예약하다

2014. 11. 18.

공개

2015. 03. 19.

엔트리

VulDB provides additional information and datapoints for this CVE:

아이디취약성CWE악용 대책CVE
74044OpenSSL Multiblock 서비스 거부17입증되지 않음공식 수정CVE-2015-0290

설명

CPE

CWE

CVSS

익스플로잇

역사

차이

연결하다

위협 인텔리전스

API JSON

API XML

API CSV

이전개요다음

Do you need the next level of professionalism?

Upgrade your account now!