Published: 13/05/2016 Updated: 01/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The ressol function in Botan prior to 1.10.11 and 1.11.x prior to 1.11.27 allows remote malicious users to cause a denial of service (infinite loop) via unspecified input to the OS2ECP function, related to a composite modulus.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian debian linux 8.0
botan project botan 1.11.21
botan project botan 1.11.20
botan project botan 1.11.12
botan project botan 1.11.11
botan project botan 1.11.4
botan project botan 1.11.3
botan project botan 1.11.23
botan project botan 1.11.22
botan project botan 1.11.15
botan project botan 1.11.14
botan project botan 1.11.13
botan project botan 1.11.6
botan project botan 1.11.5
botan project botan 1.11.26
botan project botan 1.11.19
botan project botan 1.11.18
botan project botan 1.11.10
botan project botan 1.11.9
botan project botan 1.11.2
botan project botan 1.11.1
botan project botan 1.11.25
botan project botan 1.11.24
botan project botan 1.11.17
botan project botan 1.11.16
botan project botan 1.11.8
botan project botan 1.11.7
botan project botan 1.11.0
botan project botan

CWE-20 http://botan.randombit.net/security.html http://marc.info/?l=botan-devel&m=145449001708138&w=2 http://marc.info/?l=botan-devel&m=145435148602911&w=2 http://www.debian.org/security/2016/dsa-3565 https://security.gentoo.org/glsa/201612-38 https://nvd.nist.gov

CVE-2016-2194

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect