Description

OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.

Remediation

References

CVE-2002-0655

Related Vulnerabilities

Moodle Improper Input Validation Vulnerability (CVE-2011-4294)

Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-5062)

Undertow Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2017-2670)

WordPress Plugin YouSayToo auto-publishing 'submit' Parameter Cross-Site Scripting (1.0.1)

PHP-Fusion URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-23182)

Severity

High

Classification

CVE-2002-0655

Tags

Missing Update Known Vulnerabilities