Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

openssl openssl 0.9.8l vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2010-0740
The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f up to and including 0.9.8m allows remote malicious users to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. N...
Openssl Openssl 0.9.8mOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8lOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8h
7.6
CVSSv2
CVE-2010-3864
Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f up to and including 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote malicious users to execute arbitrary code via client data that triggers a heap-based...
Openssl Openssl 0.9.8mOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8lOpenssl Openssl 1.0.0Openssl Openssl 0.9.8oOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8fOpenssl Openssl 1.0.0aOpenssl Openssl 0.9.8h
4.3
CVSSv2
CVE-2010-0433
The kssl_keytab_is_available function in ssl/kssl.c in OpenSSL prior to 0.9.8n, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value, which allows remote malicious users to cause a denial of service (NULL pointer derefe...
Openssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8eOpenssl OpensslOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8lOpenssl Openssl 0.9.8aOpenssl Openssl 0.9.8Openssl Openssl 0.9.8iOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8h
5
CVSSv2
CVE-2011-0014
ssl/t1_lib.c in OpenSSL 0.9.8h up to and including 0.9.8q and 1.0.0 up to and including 1.0.0c allows remote malicious users to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake mes...
Openssl Openssl 0.9.8hOpenssl Openssl 0.9.8pOpenssl Openssl 0.9.8qOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8lOpenssl Openssl 0.9.8mOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8oOpenssl Openssl 1.0.0bOpenssl Openssl 1.0.0aOpenssl Openssl 1.0.0Openssl Openssl 1.0.0c
9.3
CVSSv2
CVE-2011-4109
Double free vulnerability in OpenSSL 0.9.8 prior to 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote malicious users to have an unspecified impact by triggering failure of a policy check.
Openssl Openssl 0.9.8rOpenssl Openssl 0.9.8qOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8aOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8mOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8lOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8pOpenssl Openssl 0.9.8oOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8
5
CVSSv2
CVE-2011-3210
The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 up to and including 0.9.8r and 1.0.x prior to 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote malicious users to cause a denial of service (daemon crash) v...
Openssl Openssl 0.9.8pOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8mOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8sOpenssl Openssl 0.9.8oOpenssl Openssl 0.9.8Openssl Openssl 0.9.8dOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8aOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8lOpenssl Openssl 0.9.8rOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8qOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8kOpenssl Openssl 1.0.0Openssl Openssl 1.0.0d
5
CVSSv2
CVE-2014-3507
Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 prior to 0.9.8zb, 1.0.0 prior to 1.0.0n, and 1.0.1 prior to 1.0.1i allows remote malicious users to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of...
Openssl Openssl 0.9.8bOpenssl Openssl 0.9.8mOpenssl Openssl 1.0.1Openssl Openssl 0.9.8cOpenssl Openssl 1.0.0cOpenssl Openssl 1.0.0iOpenssl Openssl 1.0.0Openssl Openssl 1.0.1hOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8pOpenssl Openssl 1.0.0mOpenssl Openssl 1.0.1cOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8uOpenssl Openssl 0.9.8zaOpenssl Openssl 1.0.1gOpenssl Openssl 0.9.8gOpenssl Openssl 1.0.0hOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8dOpenssl Openssl 1.0.0eOpenssl Openssl 1.0.0f
4.3
CVSSv2
CVE-2014-3508
The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 prior to 0.9.8zb, 1.0.0 prior to 1.0.0n, and 1.0.1 prior to 1.0.1i, when pretty printing is used, does not ensure the presence of '\0' characters, which allows context-dependent malicious users to obt...
Openssl Openssl 0.9.8bOpenssl Openssl 0.9.8mOpenssl Openssl 1.0.1Openssl Openssl 0.9.8cOpenssl Openssl 1.0.0cOpenssl Openssl 1.0.0iOpenssl Openssl 1.0.0Openssl Openssl 1.0.1hOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8pOpenssl Openssl 1.0.0mOpenssl Openssl 1.0.1cOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8uOpenssl Openssl 0.9.8zaOpenssl Openssl 1.0.1gOpenssl Openssl 0.9.8gOpenssl Openssl 1.0.0hOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8dOpenssl Openssl 1.0.0eOpenssl Openssl 1.0.0f
4.3
CVSSv2
CVE-2014-3510
The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 prior to 0.9.8zb, 1.0.0 prior to 1.0.0n, and 1.0.1 prior to 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake mess...
Openssl Openssl 0.9.8bOpenssl Openssl 0.9.8mOpenssl Openssl 1.0.1Openssl Openssl 0.9.8cOpenssl Openssl 1.0.0cOpenssl Openssl 1.0.0iOpenssl Openssl 1.0.0Openssl Openssl 1.0.1hOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8pOpenssl Openssl 1.0.0mOpenssl Openssl 1.0.1cOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8uOpenssl Openssl 0.9.8zaOpenssl Openssl 1.0.1gOpenssl Openssl 0.9.8gOpenssl Openssl 1.0.0hOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8dOpenssl Openssl 1.0.0eOpenssl Openssl 1.0.0f
5
CVSSv2
CVE-2014-3505
Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 prior to 0.9.8zb, 1.0.0 prior to 1.0.0n, and 1.0.1 prior to 1.0.1i allows remote malicious users to cause a denial of service (application crash) via crafted DTLS packets that trigger an error cond...
Openssl Openssl 0.9.8bOpenssl Openssl 0.9.8mOpenssl Openssl 1.0.1Openssl Openssl 0.9.8cOpenssl Openssl 1.0.0cOpenssl Openssl 1.0.0iOpenssl Openssl 1.0.0Openssl Openssl 1.0.1hOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8pOpenssl Openssl 1.0.0mOpenssl Openssl 1.0.1cOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8uOpenssl Openssl 0.9.8zaOpenssl Openssl 1.0.1gOpenssl Openssl 0.9.8gOpenssl Openssl 1.0.0hOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8dOpenssl Openssl 1.0.0eOpenssl Openssl 1.0.0f
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook