- Home
- CVEs with nessus.description==A flaw in how OpenSSL performed Montgomery multiplications was
discovered %that could allow a local attacker to reconstruct RSA
private keys by examining another user's OpenSSL processes
(CVE-2007-3108).
Moritz Jodeit found that OpenSSL's SSL_get_shared_ciphers() function
did not correctly check the size of the buffer it was writing to. As a
result, a remote attacker could exploit this to write one NULL byte
past the end of the applications's cipher list buffer, which could
possibly lead to a denial of service or the execution of arbitrary
code (CVE-2007-5135).
Updated packages have been patched to prevent these issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top