| tiêu đề | Denial-of-Service vulnerability in axTLS library |
|---|
| Mô tả | Attackers are able to allocate significant amount of memory and processor time. So the availability of a service may be disturbed. This kind of attack is called denial of service (DoS). Therefore, this vulnerability is security-critical, if any security relevant process depends on remote availability.
CVE-2019-10013
Affected versions: axTLS <= 2.1.5
Deutsche Telekom CERT |
|---|
| Nguồn | ⚠️ https://www.telekom.com/resource/blob/586416/12097aeb8f9a6bba89a804b94575521a/dl-191121-critical-remote-denial-of-service-vulnerability-i--data.pdf |
|---|
| Người dùng | misc (UID 3) |
|---|
| Đệ trình | 29/11/2019 09:59 (cách đây 7 những năm) |
|---|
| Kiểm duyệt | 08/12/2019 13:47 (9 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 146603 [Cameron Hamilton-Rich axTLS đến asn1.c get_asn1_length Crafted Certificate tràn bộ đệm] |
|---|
| điểm | 20 |
|---|