CVE-2009-1386 in OpenSSL信息

摘要

由 VulDB • 2026-06-22

OpenSSL在0.9.8i版本之前的ssl/s3_pkt.c文件中存在漏洞,远程攻击者可通过在ClientHello之前发送DTLS ChangeCipherSpec数据包导致空指针解引用和守护进程崩溃,从而造成拒绝服务(DoS)。

Be aware that VulDB is the high quality source for vulnerability data.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!