Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

openssl openssl 0.9.8 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2

CVE-2010-2939

Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent malicious users to cause a denial of service (crash) and possibly execute ...
Openssl Openssl 0.9.7Openssl Openssl 0.9.8Openssl Openssl 1.0.0a
4
CVSSv2

CVE-2011-5095

The Diffie-Hellman key-exchange implementation in OpenSSL 0.9.8, when FIPS mode is enabled, does not properly validate a public parameter, which makes it easier for man-in-the-middle malicious users to obtain the shared secret key by modifying network traffic, a related issue to ...
Openssl Openssl 0.9.8
9.3
CVSSv2

CVE-2007-4995

Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 prior to 0.9.8f allows remote malicious users to execute arbitrary code via unspecified vectors.
Openssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8e
5
CVSSv2

CVE-2005-2969

The SSL/TLS server implementation in OpenSSL 0.9.7 prior to 0.9.7h and 0.9.8 prior to 0.9.8a, when using the SSL_OP_MSIE_SSLV2_RSA_PADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote malicious users t...
Openssl Openssl 0.9.7Openssl Openssl 0.9.7aOpenssl Openssl 0.9.7bOpenssl Openssl 0.9.7cOpenssl Openssl 0.9.7dOpenssl Openssl 0.9.7eOpenssl Openssl 0.9.7fOpenssl Openssl 0.9.7gOpenssl Openssl 0.9.8
10
CVSSv2

CVE-2009-3245

OpenSSL prior to 0.9.8m does not check for a NULL return value from bn_wexpand function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3) crypto/ec/ec2_smpl.c, and (4) engines/e_ubsec.c, which has unspecified impact and context-dependent attack vectors.
Openssl OpensslOpenssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8j
4.3
CVSSv2

CVE-2010-0433

The kssl_keytab_is_available function in ssl/kssl.c in OpenSSL prior to 0.9.8n, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value, which allows remote malicious users to cause a denial of service (NULL pointer derefe...
Openssl OpensslOpenssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8j
7.8
CVSSv2

CVE-2006-2937

OpenSSL 0.9.7 prior to 0.9.7l and 0.9.8 prior to 0.9.8d allows remote malicious users to cause a denial of service (infinite loop and memory consumption) via malformed ASN.1 structures that trigger an improperly handled error condition.
Openssl Openssl 0.9.7Openssl Openssl 0.9.7aOpenssl Openssl 0.9.7bOpenssl Openssl 0.9.7cOpenssl Openssl 0.9.7dOpenssl Openssl 0.9.7eOpenssl Openssl 0.9.7fOpenssl Openssl 0.9.7gOpenssl Openssl 0.9.7hOpenssl Openssl 0.9.7iOpenssl Openssl 0.9.7jOpenssl Openssl 0.9.7k
10
CVSSv2

CVE-2006-3738

Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 prior to 0.9.7l, 0.9.8 prior to 0.9.8d, and previous versions versions has unspecified impact and remote attack vectors involving a long list of ciphers.
Openssl Openssl 0.9.7Openssl Openssl 0.9.7aOpenssl Openssl 0.9.7bOpenssl Openssl 0.9.7cOpenssl Openssl 0.9.7dOpenssl Openssl 0.9.7eOpenssl Openssl 0.9.7fOpenssl Openssl 0.9.7gOpenssl Openssl 0.9.7hOpenssl Openssl 0.9.7iOpenssl Openssl 0.9.7jOpenssl Openssl 0.9.7k
9.3
CVSSv2

CVE-2011-4109

Double free vulnerability in OpenSSL 0.9.8 prior to 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote malicious users to have an unspecified impact by triggering failure of a policy check.
Openssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8k
6.8
CVSSv2

CVE-2007-5135

Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote malicious users to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result ...
Openssl Openssl 0.9.7Openssl Openssl 0.9.7aOpenssl Openssl 0.9.7bOpenssl Openssl 0.9.7cOpenssl Openssl 0.9.7dOpenssl Openssl 0.9.7eOpenssl Openssl 0.9.7fOpenssl Openssl 0.9.7gOpenssl Openssl 0.9.7hOpenssl Openssl 0.9.7iOpenssl Openssl 0.9.7jOpenssl Openssl 0.9.7k
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
path traversalCVE-2025-2657CVE-2025-30066CVE-2025-24813apache commons vfsCVE-2025-2478validationCVE-2025-2674code injectionmedical card generation systemmicrosoft edge (chromium-based)CVE-2025-2688cicadascms
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook