Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0659

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0659
Last Modified 10 Sep 2008 03:12:40
Published 12 Aug 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0659

Summary

The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.0

  • Apple Mac Os X 10.0.1

  • Apple Mac Os X 10.0.2

  • Apple Mac Os X 10.0.3

  • Apple Mac Os X 10.0.4

  • Apple Mac Os X 10.1

  • Apple Mac Os X 10.1.1

  • Apple Mac Os X 10.1.2

  • Apple Mac Os X 10.1.3

  • Apple Mac Os X 10.1.4

  • Apple Mac Os X 10.1.5

Application

  • Openssl 0.9.1c

  • Openssl 0.9.2b

  • Openssl 0.9.3

  • Openssl 0.9.4

  • Openssl 0.9.5

  • Openssl 0.9.5a

  • Openssl 0.9.6

  • Openssl 0.9.6a

  • Openssl 0.9.6b

  • Openssl 0.9.6c

  • Openssl 0.9.6d

  • Openssl 0.9.7

  • Oracle Application Server

  • Oracle Application Server 1.0.2

  • Oracle Application Server 1.0.2.1s

  • Oracle Application Server 1.0.2.2

  • Oracle Corporate Time Outlook Connector 3.1

  • Oracle Corporate Time Outlook Connector 3.1.1

  • Oracle Corporate Time Outlook Connector 3.1.2

  • Oracle Corporate Time Outlook Connector 3.3

  • Oracle Http Server 9.0.1

  • Oracle Http Server 9.2.0


References

CERT-VN - VU#748355

CERT - CA-2002-23

BID - 5366

XF - openssl-asn1-parser-dos(9718)

REDHAT - RHSA-2002:164

REDHAT - RHSA-2002:161

REDHAT - RHSA-2002:160

CONECTIVA - CLA-2002:516

FREEBSD - FreeBSD-SA-02:33

CALDERA - CSSA-2002-033.1

CALDERA - CSSA-2002-033.0


Last Updated: 27 May 2016 10:37:00