Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2010-2939

Published: 17/08/2010 Updated: 07/11/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Openssl

Vulnerability Summary

Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.

Vulnerable Product Search on Vulmon Subscribe to Product

openssl openssl 0.9.7

openssl openssl 0.9.8

openssl openssl 1.0.0a

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2010-2939: Double free
Debian Bug report logs - #594415 CVE-2010-2939: Double free Package: openssl; Maintainer for openssl is Debian OpenSSL Team <pkg-openssl-devel@listsaliothdebianorg>; Source for openssl is src:openssl (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Wed, 25 Aug 2010 20:06:01 UTC Severit ...
Ubuntu Security Notice: openssl vulnerabilities
It was discovered that OpenSSL incorrectly handled return codes from the bn_wexpand function calls A remote attacker could trigger this flaw in services that used SSL to cause a denial of service or possibly execute arbitrary code with application privileges This issue only affected Ubuntu 606 LTS, 804 LTS, 904 and 910 (CVE-2009-3245) ...

Exploits

Exploit DB: OpenSSL - 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption
source: wwwsecurityfocuscom/bid/42306/info OpenSSL is prone to a remote memory-corruption vulnerability Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the application using the vulnerable library Failed exploit attempts will result in a denial-of-service condition The issue affect ...

References

CWE-399http://securitytracker.com/id?1024296http://seclists.org/fulldisclosure/2010/Aug/84http://www.openwall.com/lists/oss-security/2010/08/11/6http://secunia.com/advisories/40906http://www.vupen.com/english/advisories/2010/2038http://secunia.com/advisories/41105http://www.debian.org/security/2010/dsa-2100http://www.vupen.com/english/advisories/2010/2229http://www.ubuntu.com/usn/USN-1003-1http://security.FreeBSD.org/advisories/FreeBSD-SA-10:10.openssl.aschttp://secunia.com/advisories/42309http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.668793http://www.vupen.com/english/advisories/2010/3077http://secunia.com/advisories/42413http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.htmlhttp://www.vmware.com/security/advisories/VMSA-2011-0003.htmlhttp://secunia.com/advisories/43312http://marc.info/?l=bugtraq&m=130331363227777&w=2http://www.securityfocus.com/archive/1/516397/100/0/threadedhttp://www.mail-archive.com/openssl-dev%40openssl.org/msg28045.htmlhttp://www.mail-archive.com/openssl-dev%40openssl.org/msg28043.htmlhttp://www.mail-archive.com/openssl-dev%40openssl.org/msg28049.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594415https://usn.ubuntu.com/1003-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/34427/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook