Description

Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attackers to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.

Remediation

References

CVE-2002-0656

Related Vulnerabilities

Zope Web Application Server Other Vulnerability (CVE-2001-1227)

Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-7989)

WordPress Plugin Custom Global Variables Cross-Site Scripting (1.0.5)

Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.13)

Atlassian Confluence Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2928)

Severity

High

Classification

CVE-2002-0656

Tags

Missing Update Known Vulnerabilities