Lucene search
OpenSSLOPENSSL:CVE-2007-4995HistoryOct 12, 2007 - 12:00 a.m.
Vulnerability in OpenSSL CVE-2007-4995
2007-10-1200:00:00
www.openssl-library.org
17
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
High
EPSS
0.171
Percentile
96.2%
A flaw in DTLS support. An attacker could create a malicious client or server that could trigger a heap overflow. This is possibly exploitable to run arbitrary code, but it has not been verified.
Found by Andy Polyakov.
Affected configurations
Node
opensslopensslRange0.9.8โ0.9.8f
Related
nessus
nessus
openSUSE 10 Security Update : libopenssl-devel (libopenssl-devel-4560)
2007-10-24 00:00:00
Mandrake Linux Security Advisory : openssl (MDKSA-2007:237)
2007-12-07 00:00:00
SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 4559)
2007-12-13 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200710-30 (openssl)
2008-09-24 00:00:00
Ubuntu Update for openssl vulnerability USN-534-1
2009-03-23 00:00:00
Ubuntu: Security Advisory (USN-534-1)
2009-03-23 00:00:00
debiancve
debiancve
CVE-2007-4995
2007-10-13 01:17:00
prion
prion
Code injection
2007-10-13 01:17:00
nvd
nvd
CVE-2007-4995
2007-10-13 01:17:00
cve
cve
CVE-2007-4995
2007-10-13 01:17:00
f5
f5
SOL8837 - OpenSSL DTLS off-by-one error - CVE-2007-4995
2008-06-17 00:00:00
K8837 : OpenSSL DTLS off-by-one error - CVE-2007-4995
2013-03-18 00:00:00
gentoo
gentoo
OpenSSL: Remote execution of arbitrary code
2007-10-27 00:00:00
AMD64 x86 emulation base libraries: Multiple vulnerabilities
2014-12-12 00:00:00
ubuntucve
ubuntucve
CVE-2007-4995
2007-10-12 00:00:00
seebug
seebug
OpenSSL DTLS่ฟ็จๅ ๆบขๅบๆผๆด
2007-10-15 00:00:00
securityvulns
securityvulns
OpenSSL DTLS code execution
2007-10-13 00:00:00
cvelist
cvelist
CVE-2007-4995
2007-10-13 01:00:00
ubuntu
ubuntu
OpenSSL vulnerability
2007-10-22 00:00:00
checkpoint_security
checkpoint_security
OpenSSL Vulnerability CVE-2007-4995
2007-10-16 22:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: openssl-0.9.8b-15.fc6
2007-10-15 20:05:56
[SECURITY] Fedora 7 Update: openssl-0.9.8b-15.fc7
2007-10-18 02:26:18
oraclelinux
oraclelinux
Important: openssl security update
2007-10-12 00:00:00
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2019-03-13 00:00:00
redhat
redhat
(RHSA-2007:0964) Important: openssl security update
2007-10-12 00:00:00
centos
centos
openssl security update
2007-10-18 00:46:44
debian
debian
osv
osv
openssl - predictable random number generator
2008-05-13 00:00:00
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
High
EPSS
0.171
Percentile
96.2%
Related for OPENSSL:CVE-2007-4995