OpenSSL - 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption
| EKU-ID: 39147 | CVE: CVE-2010-2939;OSVDB-66946 | OSVDB-ID: |
| Author: Georgi Guninski | Published: 2010-08-07 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 39147 | CVE: CVE-2010-2939;OSVDB-66946 | OSVDB-ID: |
| Author: Georgi Guninski | Published: 2010-08-07 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/42306/info OpenSSL is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the application using the vulnerable library. Failed exploit attempts will result in a denial-of-service condition. The issue affects OpenSSL 1.0.0a; other versions may also be affected. https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/34427.zip