Description
OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key.
Remediation
References
Related Vulnerabilities
AngularJS Improper Input Validation Vulnerability (CVE-2019-10768)
Jboss EAP CVE-2016-5018 Vulnerability (CVE-2016-5018)
Jenkins Improper Input Validation Vulnerability (CVE-2021-21606)
WordPress Plugin Entries For WPForms SQL Injection (1.4.0)
WordPress Plugin Simple Download Monitor Multiple Cross-Site Scripting Vulnerabilities (3.9.4)