CVE-2009-0590

NONECVSS 0.0

0.0

The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.

🔗 References (120)

secalert@redhatftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-008.txt.asc
secalert@redhathttp://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html
secalert@redhathttp://lists.vmware.com/pipermail/security-announce/2010/000082.html
secalert@redhathttp://marc.info/?l=bugtraq&m=124464882609472&w=2
secalert@redhathttp://marc.info/?l=bugtraq&m=125017764422557&w=2
secalert@redhathttp://marc.info/?l=bugtraq&m=127678688104458&w=2
secalert@redhathttp://secunia.com/advisories/34411
secalert@redhathttp://secunia.com/advisories/34460
secalert@redhathttp://secunia.com/advisories/34509
secalert@redhathttp://secunia.com/advisories/34561
secalert@redhathttp://secunia.com/advisories/34666
secalert@redhathttp://secunia.com/advisories/34896

Is Your Infrastructure Affected by CVE-2009-0590?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-0590

📅 Published

🔄 Last Modified

🔗 References (120)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-0590?