OpenSSL SSL_Get_Shared_Ciphers Buffer Overflow Vulnerability

OpenSSL is prone to a buffer-overflow vulnerability because the library fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Successfully exploiting this issue may result in the execution of arbitrary machine code in the context of applications that use the affected library. Failed exploit attempts may crash applications, denying service to legitimate users.


Privacy Statement
Copyright 2010, SecurityFocus