Description

OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.

Remediation

References

CVE-2002-0655

Related Vulnerabilities

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0165)

SugarCRM Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2019-17315)

PostgreSQL CVE-2018-1058 Vulnerability (CVE-2018-1058)

WordPress Plugin Popup Maker-Popup for opt-ins, lead gen, & more Cross-Site Request Forgery (1.18.0)

OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2178)

Severity

High

Classification

CVE-2002-0655

Tags

Missing Update Known Vulnerabilities