Definition

OpenSSL Double-free Vulnerability

oval:org.mitre.oval:def:2590

Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.

Family:

unix

Status:

ACCEPTED

Platform(s):

Sun Solaris 8
Sun Solaris 9

Class:

vulnerability

Reference(s):

CVE-2003-0545

Product(s):

Sun Cluster