OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote malicious users to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openssl openssl 1.0.0f |
||
openssl openssl 0.9.8s |