0.9.8e : Security Vulnerabilities

Cpe Name:cpe:/a:openssl:openssl:0.9.8e

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : Cve Number Descending Cve Number Ascending CVSS Score Descending Number Of Exploits Descending

Copy Results Download Results Select Table

#	CVE ID	CWE ID	# of Exploits	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2013-0166	310		DoS	2013-02-08	2013-02-11	5.0	None	Remote	Low	Not required	None	None	Partial
OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid key.
2	CVE-2012-2333	189		DoS	2012-05-14	2013-03-01	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted TLS packet that is not properly handled during a certain explicit IV calculation.
3	CVE-2012-2110	119		DoS Overflow Mem. Corr.	2012-04-19	2013-05-09	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly have unspecified other impact, via crafted DER data, as demonstrated by an X.509 certificate or an RSA public key.
4	CVE-2012-1165	399		DoS	2012-03-15	2013-05-03	5.0	None	Remote	Low	Not required	None	None	Partial
The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.
5	CVE-2012-0884	310			2012-03-12	2013-05-03	5.0	None	Remote	Low	Not required	Partial	None	None
The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack (MMA) adaptive chosen ciphertext attack.
6	CVE-2012-0027	399		DoS	2012-01-05	2012-07-03	5.0	None	Remote	Low	Not required	None	None	Partial
The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client.
7	CVE-2011-4619	399		DoS	2012-01-05	2012-11-06	5.0	None	Remote	Low	Not required	None	None	Partial
The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors.
8	CVE-2011-4577	399		DoS	2012-01-05	2012-11-06	4.3	None	Remote	Medium	Not required	None	None	Partial
OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers.
9	CVE-2011-4576	310		+Info	2012-01-05	2012-11-06	5.0	None	Remote	Low	Not required	Partial	None	None
The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.
10	CVE-2011-4109	399			2012-01-05	2012-11-06	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.
11	CVE-2011-4108	310			2012-01-05	2012-11-06	4.3	None	Remote	Medium	Not required	Partial	None	None
The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack.
12	CVE-2011-3210	399		DoS	2011-09-22	2012-11-06	5.0	None	Remote	Low	Not required	None	None	Partial
The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service (daemon crash) via out-of-order messages that violate the TLS protocol.
13	CVE-2011-1945	310			2011-05-31	2011-10-25	2.6	None	Remote	High	Not required	Partial	None	None
The elliptic curve cryptography (ECC) subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm (ECDSA) is used for the ECDHE_ECDSA cipher suite, does not properly implement curves over binary fields, which makes it easier for context-dependent attackers to determine private keys via a timing attack and a lattice calculation.
14	CVE-2010-4252	287		Bypass	2010-12-06	2010-12-15	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol.
15	CVE-2010-4180				2010-12-06	2012-04-05	4.3	None	Remote	Medium	Not required	None	Partial	None
OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not properly prevent modification of the ciphersuite in the session cache, which allows remote attackers to force the downgrade to an unintended cipher via vectors involving sniffing network traffic to discover a session identifier.
16	CVE-2010-0742	310		Exec Code	2010-06-03	2011-07-18	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
The Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which allows context-dependent attackers to modify invalid memory locations or conduct double-free attacks, and possibly execute arbitrary code, via unspecified vectors.
17	CVE-2010-0433	20		DoS	2010-03-05	2011-07-18	4.3	None	Remote	Medium	Not required	None	None	Partial
The kssl_keytab_is_available function in ssl/kssl.c in OpenSSL before 0.9.8n, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via SSL cipher negotiation, as demonstrated by a chroot installation of Dovecot or stunnel without Kerberos configuration files inside the chroot.
18	CVE-2009-4355	399		DoS	2010-01-14	2011-07-18	5.0	None	Remote	Low	Not required	None	None	Partial
Memory leak in the zlib_stateful_finish function in crypto/comp/c_zlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service (memory consumption) via vectors that trigger incorrect calls to the CRYPTO_cleanup_all_ex_data function, as demonstrated by use of SSLv3 and PHP with the Apache HTTP Server, a related issue to CVE-2008-1678.
19	CVE-2009-3555	310			2009-11-09	2012-10-22	5.8	None	Remote	Medium	Not required	None	Partial	Partial
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.
20	CVE-2009-3245	20			2010-03-05	2011-08-26	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3) crypto/ec/ec2_smpl.c, and (4) engines/e_ubsec.c, which has unspecified impact and context-dependent attack vectors.
21	CVE-2009-2409	310			2009-07-30	2012-10-22	5.1	None	Remote	High	Not required	Partial	Partial	Partial
The Network Security Services (NSS) library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote attackers to spoof certificates by using MD2 design flaws to generate a hash collision in less than brute-force time. NOTE: the scope of this issue is currently limited because the amount of computation required is still large.
22	CVE-2009-1387	399		DoS	2009-06-04	2013-01-22	5.0	None	Remote	Low	Not required	None	None	Partial
The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence DTLS handshake message, related to a "fragment bug."
23	CVE-2009-1386		1	DoS	2009-06-04	2013-01-22	5.0	None	Remote	Low	Not required	None	None	Partial
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.
24	CVE-2009-1378	399	1	DoS	2009-05-19	2013-01-22	5.0	None	Remote	Low	Not required	None	None	Partial
Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka "DTLS fragment handling memory leak."
25	CVE-2009-1377	119		DoS Overflow	2009-05-19	2013-01-22	5.0	None	Remote	Low	Not required	None	None	Partial
The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."
26	CVE-2009-0789	189		DoS	2009-03-27	2011-10-25	5.0	None	Remote	Low	Not required	None	None	Partial
OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key.
27	CVE-2009-0590	119		DoS Overflow	2009-03-27	2013-01-22	5.0	None	Remote	Low	Not required	None	None	Partial
The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.
28	CVE-2008-7270	310			2010-12-06	2012-04-05	4.3	None	Remote	Medium	Not required	None	Partial	None
OpenSSL before 0.9.8j, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not prevent modification of the ciphersuite in the session cache, which allows remote attackers to force the use of a disabled cipher via vectors involving sniffing network traffic to discover a session identifier, a different vulnerability than CVE-2010-4180.
29	CVE-2008-5077	20		Bypass	2009-01-07	2012-10-30	5.8	None	Remote	Medium	Not required	None	Partial	Partial
OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys.
30	CVE-2007-5135	189		Exec Code	2007-09-27	2011-08-29	6.8	User	Remote	Medium	Not required	Partial	Partial	Partial
Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible.
31	CVE-2007-4995	189		Exec Code	2007-10-12	2011-08-30	9.3	Admin	Remote	Medium	Not required	Complete	Complete	Complete
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.
32	CVE-2007-3108				2007-08-07	2010-08-21	1.2	None	Local	High	Not required	Partial	None	None
The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.
33	CVE-2006-7250			DoS	2012-02-29	2013-01-22	5.0	None	Remote	Low	Not required	None	None	Partial
The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message.

Total number of vulnerabilities : 33 Page : 1 (This Page)