Description

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

Remediation

References

CVE-2004-0081

Related Vulnerabilities

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6112)

WordPress Plugin Circles Gallery Cross-Site Scripting (1.0.10)

WordPress Other Vulnerability (CVE-2006-4743)

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0198)

WordPress Plugin Visual CSS Style Editor Cross-Site Request Forgery (7.2.0)

Severity

Medium

Classification

CVE-2004-0081

Tags

Missing Update Known Vulnerabilities