Vulnerabilities

CVE-2010-0740

by Fred · 26/03/2010

The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information.

Date published : 2010-03-26

http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html

http://www.securityfocus.com/archive/1/516397/100/0/threaded

Similar

Tags: Cybersecurity Alert