Description
Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2018-3246 Vulnerability (CVE-2018-3246)
WordPress Plugin Advanced Access Manager Cross-Site Scripting (6.7.9)
WordPress Plugin Slideshow Gallery LITE Multiple Unspecified Vulnerabilities (1.5.3.3)
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3730)
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31552)