• info
• discussion
• exploit
• solution
• references

OpenSSL Public Key Processing Denial of Service Vulnerability

An attacker may use overly long public keys to connect (via ASN.1) to a vulnerable instance of a server using the vulnerable library.