CVE-2019-10013

CVE-2019-10013

The asn1_signature function in asn1.c in Cameron Hamilton-Rich axTLS through 2.1.5 has a Buffer Overflow that allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted certificate in the TLS certificate handshake message, because the result of get_asn1_length() is not checked for a minimum or maximum size.

Source: CVE-2019-10013

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다