Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

openssl openssl 0.9.8g vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2

CVE-2008-0891

Double free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote malicious users to cause a denial of service (crash) via a malformed Client Hello packet. NOTE: some of these details are obtained from third party information.
Openssl Openssl 0.9.8fOpenssl Openssl 0.9.8g
5
CVSSv2

CVE-2008-1678

Memory leak in the zlib_stateful_init function in crypto/comp/c_zlib.c in libssl in OpenSSL 0.9.8f up to and including 0.9.8h allows remote malicious users to cause a denial of service (memory consumption) via multiple calls, as demonstrated by initial SSL client handshakes to th...
Openssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8h
4.3
CVSSv2

CVE-2008-1672

OpenSSL 0.9.8f and 0.9.8g allows remote malicious users to cause a denial of service (crash) via a TLS handshake that omits the Server Key Exchange message and uses "particular cipher suites," which triggers a NULL pointer dereference.
Openssl Openssl 0.9.8fOpenssl Openssl 0.9.8gCanonical Ubuntu Linux 8.04
5
CVSSv2

CVE-2010-0740

The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f up to and including 0.9.8m allows remote malicious users to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. N...
Openssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8lOpenssl Openssl 0.9.8m
7.6
CVSSv2

CVE-2010-3864

Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f up to and including 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote malicious users to execute arbitrary code via client data that triggers a heap-based...
Openssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8kOpenssl Openssl 0.9.8lOpenssl Openssl 0.9.8mOpenssl Openssl 0.9.8nOpenssl Openssl 0.9.8oOpenssl Openssl 1.0.0Openssl Openssl 1.0.0a
10
CVSSv2

CVE-2009-3245

OpenSSL prior to 0.9.8m does not check for a NULL return value from bn_wexpand function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3) crypto/ec/ec2_smpl.c, and (4) engines/e_ubsec.c, which has unspecified impact and context-dependent attack vectors.
Openssl OpensslOpenssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8j
4.3
CVSSv2

CVE-2010-0433

The kssl_keytab_is_available function in ssl/kssl.c in OpenSSL prior to 0.9.8n, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value, which allows remote malicious users to cause a denial of service (NULL pointer derefe...
Openssl OpensslOpenssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8j
9.3
CVSSv2

CVE-2011-4109

Double free vulnerability in OpenSSL 0.9.8 prior to 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote malicious users to have an unspecified impact by triggering failure of a policy check.
Openssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8k
5
CVSSv2

CVE-2011-3210

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 up to and including 0.9.8r and 1.0.x prior to 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote malicious users to cause a denial of service (daemon crash) v...
Openssl Openssl 0.9.8Openssl Openssl 0.9.8aOpenssl Openssl 0.9.8bOpenssl Openssl 0.9.8cOpenssl Openssl 0.9.8dOpenssl Openssl 0.9.8eOpenssl Openssl 0.9.8fOpenssl Openssl 0.9.8gOpenssl Openssl 0.9.8hOpenssl Openssl 0.9.8iOpenssl Openssl 0.9.8jOpenssl Openssl 0.9.8k
5.8
CVSSv2

CVE-2008-5077

OpenSSL 0.9.8i and previous versions does not properly check the return value from the EVP_VerifyFinal function, which allows remote malicious users to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys.
Openssl OpensslOpenssl Openssl 0.9.1cOpenssl Openssl 0.9.2bOpenssl Openssl 0.9.3Openssl Openssl 0.9.3aOpenssl Openssl 0.9.4Openssl Openssl 0.9.5Openssl Openssl 0.9.5aOpenssl Openssl 0.9.6Openssl Openssl 0.9.6aOpenssl Openssl 0.9.6bOpenssl Openssl 0.9.6c
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
path traversalCVE-2025-2657CVE-2025-30066CVE-2025-24813apache commons vfsCVE-2025-2478validationCVE-2025-2674code injectionmedical card generation systemmicrosoft edge (chromium-based)CVE-2025-2688cicadascms
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook