CVE-2016-0797

high-risk

Published 2016-03-03

Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.

Do I need to act?

34.2% chance of exploitation in next 30 days

EPSS score — higher than 66% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (20)

Openssl

Node.Js

Ubuntu Linux

Affected Vendors

Debian Canonical Openssl Nodejs

References (88)

Third Party Advisory http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html

Mailing List http://marc.info/?l=bugtraq&m=145889460330120&w=2

Vendor Advisory http://openssl.org/news/secadv/20160301.txt

and 68 more references

/ 100

high-risk

Severity 26/34 · High

Exploitability 16/34 · Moderate

Exposure 24/34 · High