Back to search
CVE-2009-0590
Published: Mar 27, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SSRT090059
vendor-advisory
x_refsource_HP
ADV-2009-0850
vdb-entry
x_refsource_VUPEN
1021905
vdb-entry
x_refsource_SECTRACK
34896
third-party-advisory
x_refsource_SECUNIA
MDVSA-2009:087
vendor-advisory
x_refsource_MANDRIVA
ADV-2009-1175
vdb-entry
x_refsource_VUPEN
42724
third-party-advisory
x_refsource_SECUNIA
20090403 rPSA-2009-0057-1 m2crypto openssl openssl-scripts
mailing-list
x_refsource_BUGTRAQ
SUSE-SU-2011:0847
vendor-advisory
x_refsource_SUSE
http://wiki.rpath.com/Advisories:rPSA-2009-0057
x_refsource_CONFIRM
DSA-1763
vendor-advisory
x_refsource_DEBIAN
38794
third-party-advisory
x_refsource_SECUNIA
[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates
mailing-list
x_refsource_MLIST
34960
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2011:0845
vendor-advisory
x_refsource_SUSE
http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0057
x_refsource_MISC
34666
third-party-advisory
x_refsource_SECUNIA
USN-750-1
vendor-advisory
x_refsource_UBUNTU
FreeBSD-SA-09:08
vendor-advisory
x_refsource_FREEBSD
HPSBUX02435
vendor-advisory
x_refsource_HP
ADV-2009-1020
vdb-entry
x_refsource_VUPEN
35729
third-party-advisory
x_refsource_SECUNIA
RHSA-2009:1335
vendor-advisory
x_refsource_REDHAT
52864
vdb-entry
x_refsource_OSVDB
34561
third-party-advisory
x_refsource_SECUNIA
35380
third-party-advisory
x_refsource_SECUNIA
HPSBOV02540
vendor-advisory
x_refsource_HP
42467
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2009-09-10-2
vendor-advisory
x_refsource_APPLE
35065
third-party-advisory
x_refsource_SECUNIA
[syslog-ng-announce] 20110110 syslog-ng Premium Edition 3.0.6a has been released
mailing-list
x_refsource_MLIST
oval:org.mitre.oval:def:10198
vdb-entry
signature
x_refsource_OVAL
36533
third-party-advisory
x_refsource_SECUNIA
http://www.php.net/archive/2009.php#id2009-04-08-1
x_refsource_CONFIRM
34411
third-party-advisory
x_refsource_SECUNIA
20101207 VMSA-2010-0019 VMware ESX third party updates for Service Console
mailing-list
x_refsource_BUGTRAQ
34509
third-party-advisory
x_refsource_SECUNIA
openssl-asn1-stringprintex-dos(49431)
vdb-entry
x_refsource_XF
35181
third-party-advisory
x_refsource_SECUNIA
258048
vendor-advisory
x_refsource_SUNALERT
38834
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2009:010
vendor-advisory
x_refsource_SUSE
oval:org.mitre.oval:def:6996
vdb-entry
signature
x_refsource_OVAL
[syslog-ng-announce] 20110110 syslog-ng Premium Edition 3.2.1a has been released
mailing-list
x_refsource_MLIST
ADV-2010-3126
vdb-entry
x_refsource_VUPEN
http://voodoo-circle.sourceforge.net/sa/sa-20090326-01.html
x_refsource_CONFIRM
http://support.apple.com/kb/HT3865
x_refsource_CONFIRM
ADV-2009-1220
vdb-entry
x_refsource_VUPEN
http://www.openssl.org/news/secadv_20090325.txt
x_refsource_CONFIRM
ADV-2009-1548
vdb-entry
x_refsource_VUPEN
36701
third-party-advisory
x_refsource_SECUNIA
http://support.avaya.com/elmodocs2/security/ASA-2009-172.htm
x_refsource_CONFIRM
http://www.vmware.com/security/advisories/VMSA-2010-0019.html
x_refsource_CONFIRM
HPSBMA02447
vendor-advisory
x_refsource_HP
https://kb.bluecoat.com/index?page=content&id=SA50
x_refsource_CONFIRM
34460
third-party-advisory
x_refsource_SECUNIA
SSRT090062
vendor-advisory
x_refsource_HP
34256
vdb-entry
x_refsource_BID
42733
third-party-advisory
x_refsource_SECUNIA
ADV-2010-0528
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now