Filter
AND
OpenSSL OpenSSLOpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers to cause a d…
7.8
First published (updated )
OpenSSL OpenSSLThe default configuration on OpenSSL before 0.9.8 uses MD5 for creating message digests instead of a…
7.5
First published (updated )
OpenSSL OpenSSLThe SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers …
7.5
First published (updated )
OpenSSL OpenSSLOpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representati…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OpenSSL OpenSSLOpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly validate the public parameters in t…
7.5
First published (updated )
OpenSSL OpenSSLThe Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9…
7.5
First published (updated )
OpenSSL OpenSSLInteger underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1…
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OpenSSL OpenSSLcrypto/bn/bn_nist.c in OpenSSL before 0.9.8h on 32-bit platforms, as used in stunnel and other produ…
5.8
First published (updated )
OpenSSL OpenSSLThe design of Advanced Encryption Standard (AES), aka Rijndael, allows remote attackers to recover A…
5.1
First published (updated )
Stunnel StunnelOpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OpenSSL OpenSSLssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC…
First published (updated )
Cisco Pix Firewall SoftwareOpenSSL 0.9.6k allows remote attackers to cause a denial of service (crash via large recursion) via …
First published (updated )
OpenSSL OpenSSLThe ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers…
First published (updated )
Cisco Pix Firewall SoftwareThe SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites…
First published (updated )
Cisco Pix Firewall SoftwareOpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote atta…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OpenSSL OpenSSLThe GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST bl…
First published (updated )
OpenSSL OpenSSLThe implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.…
First published (updated )
OpenSSL OpenSSLMemory leak in the zlib_stateful_finish function in crypto/comp/c_zlib.c in OpenSSL 0.9.8l and earli…
First published (updated )
OpenSSL OpenSSLOpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OpenSSL OpenSSLThe SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initiali…
First published (updated )
OpenSSL OpenSSLThe Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f do…
First published (updated )
OpenSSL OpenSSLOpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with expon…
4.3
First published (updated )
OpenSSL OpenSSLOpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attacke…
4.3
First published (updated )
OpenSSL OpenSSLThe DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if …
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.