|Max CVSS||5.0||Min CVSS||2.6||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files.
|29-07-2019 - 14:24||24-09-2008 - 11:42|
OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the
|17-08-2017 - 01:30||27-03-2009 - 16:30|
The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly handle errors associated with malformed signed attributes, which allows remote attackers to repudiate a signature that originally appeared to be valid bu
|17-08-2017 - 01:29||27-03-2009 - 16:30|