V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsDocs
Back to catalog
BDU:2016-00635
BDU
Critical

Уязвимость функции doapr_outch (crypto/bio/b_print.c) библиотеки OpenSSL вызвана переполнением буфера. Эксплуатация уязвимости может позвол…

CVSS
10.0
Critical
EPSS
0.00
p0
Published
2016-01-01
Updated
2016-01-01
Description

Уязвимость функции doapr_outch (crypto/bio/b_print.c) библиотеки OpenSSL вызвана переполнением буфера. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, вызвать отказ в обслуживании или оказать другое воздействие при помощи длинной строки ASN.1 данных

Affected products
Openssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation OpensslOpenssl software foundation Openssl
CVSS vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Timeline
2016-01-01
Published
2016-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Authentication
Au: N
None (N)
Confidentiality Impact
C: C
Complete
Integrity Impact
I: C
Complete
Availability Impact
A: C
Complete
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected software
ProductVendorStatus
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
opensslopenssl software foundationTracked
Source databases
BDU
Related vulnerabilities
CVE-2016-2842