OpenSSL ASCII Representation Of Integers Buffer Overflow Vulnerability

Remotely exploitable buffer overflow conditions have been reported in OpenSSL. This issue is due to insufficient checking of bounds with regards to ASCII representations of integers on 64 bit platforms. It is possible to overflow these buffers on a vulnerable system if overly large values are submitted by a malicious attacker.

Exploitation of this vulnerability may allow execution of arbitrary code with the privileges of the vulnerable application, service or client.


 

Privacy Statement
Copyright 2010, SecurityFocus