| Título | Denial-of-Service vulnerability in axTLS library |
|---|
| Descrição | Attackers are able to allocate significant amount of memory and processor time. So the availability of a service may be disturbed. This kind of attack is called denial of service (DoS). Therefore, this vulnerability is security-critical, if any security relevant process depends on remote availability.
CVE-2019-9689
Affected versions: axTLS <= 2.1.5
Deutsche Telekom CERT |
|---|
| Fonte | ⚠️ https://www.telekom.com/resource/blob/586428/51ae062269fbcb068bd20379f87f1398/dl-191121-critical-remote-denial-of-service-vulnerability-ii--data.pdf |
|---|
| Utilizador | misc (UID 3) |
|---|
| Submissão | 29/11/2019 09h58 (há 7 anos) |
|---|
| Moderação | 08/12/2019 13h46 (9 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 146654 [Cameron Hamilton-Rich axTLS até 2.1.5 TLS Handshake tls1.c process_certificate TLS Certificate Excesso de tampão] |
|---|
| Pontos | 20 |
|---|