CVE-2002-0655

Currently unrated

Key Information:

Vendor: Oracle
Status: Http Server; Corporate Time Outlook Connector; OpenSSL; Application Server
Vendor: CVE Published:; 12 August 2002

Summary

OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.

References

http://www.linux-mandrake.com/en/security/2002/MDKSA-2002...

vendor-advisoryx_refsource_MANDRAKE

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-03...

vendor-advisoryx_refsource_CALDERA

http://www.cert.org/advisories/CA-2002-23.html

third-party-advisoryx_refsource_CERT

Timeline

Vulnerability published
Aug 12, 2002
Vulnerability Reserved
Jul 2, 2002