- Home
- CVEs with nessus.description==According to its banner, the remote host is running a version of
OpenSSL 0.9.8 prior to 0.9.8zh. It is, therefore, affected by a flaw
in the ASN1_TFLG_COMBINE implementation in file tasn_dec.c related to
handling malformed X509_ATTRIBUTE structures. A remote attacker can
exploit this to cause a memory leak by triggering a decoding failure
in a PKCS#7 or CMS application, resulting in a denial of service.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top