Description
OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key.
Remediation
References
Related Vulnerabilities
MyBB CVE-2020-22612 Vulnerability (CVE-2020-22612)
MySQL CVE-2021-2060 Vulnerability (CVE-2021-2060)
PrestaShop Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-8823)
Perl Improper Certificate Validation Vulnerability (CVE-2023-31484)
WordPress Plugin Disclosure Policy 'abspath' Parameter Remote File Include (1.0)