CVE-2007-4995
published 2007-10-13CVE-2007-4995: Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.
PriorityP345critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
11.16%
95.4th percentile
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssl | < openssl 0.9.8f-1 (bookworm) | openssl 0.9.8f-1 (bookworm) |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | >= 0 < 0.9.8f-1 | 0.9.8f-1 |
| openssl | openssl | >= 0 < 0.9.8f-1 | 0.9.8f-1 |
| openssl | openssl | >= 0 < 0.9.8f-1 | 0.9.8f-1 |
| openssl | openssl | >= 0 < 0.9.8f-1 | 0.9.8f-1 |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
vendor_debian9.3LOW
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
OpenSSL vulnerability
vendor_ubuntu·2007-10-22
CVE-2007-4995 OpenSSL vulnerability
Title: OpenSSL vulnerability
Summary: OpenSSL vulnerability
Andy Polyakov discovered that the DTLS implementation in OpenSSL
was vulnerable. A remote attacker could send a specially crafted
connection request to services using DTLS and execute arbitrary code
with the service's privileges. There are no known Ubuntu applications
that are currently using DTLS.
Instructions: After a standard system upgrade you need to reboot your computer to
effect the necessary changes.
Red Hat
openssl dtls out of order vulnerabilitiy
vendor_redhat·2007-10-12·CVSS 9.3
CVE-2007-4995 [CRITICAL] openssl dtls out of order vulnerabilitiy
openssl dtls out of order vulnerabilitiy
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.
Statement: This issue did not affect the versions of OpenSSL as shipped with Red Hat Enterprise Linux 2.1, 3, or 4.
Please note that the CVE description is incorrect, this issue did not affect upstream versions of OpenSSL prior to 0.9.8.
Debian
CVE-2007-4995: openssl - Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allow...
vendor_debian·2007·CVSS 9.3
CVE-2007-4995 [CRITICAL] CVE-2007-4995: openssl - Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allow...
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.
Scope: local
bookworm: resolved (fixed in 0.9.8f-1)
bullseye: resolved (fixed in 0.9.8f-1)
forky: resolved (fixed in 0.9.8f-1)
sid: resolved (fixed in 0.9.8f-1)
trixie: resolved (fixed in 0.9.8f-1)
GHSA
GHSA-wf86-8369-qhfj: Off-by-one error in the DTLS implementation in OpenSSL 0
ghsa_unreviewed·2022-05-01
CVE-2007-4995 [HIGH] GHSA-wf86-8369-qhfj: Off-by-one error in the DTLS implementation in OpenSSL 0
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.
OSV
CVE-2007-4995: Off-by-one error in the DTLS implementation in OpenSSL 0
osv·2007-10-13·CVSS 9.3
CVE-2007-4995 [CRITICAL] CVE-2007-4995: Off-by-one error in the DTLS implementation in OpenSSL 0
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.
No detection rules found.
No public exploits indexed.
http://bugs.gentoo.org/show_bug.cgi?id=195634http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01299773http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.htmlhttp://secunia.com/advisories/25878http://secunia.com/advisories/27205http://secunia.com/advisories/27217http://secunia.com/advisories/27271http://secunia.com/advisories/27363http://secunia.com/advisories/27434http://secunia.com/advisories/27933http://secunia.com/advisories/28084http://secunia.com/advisories/30161http://secunia.com/advisories/30220http://secunia.com/advisories/30852http://security.gentoo.org/glsa/glsa-200710-30.xmlhttp://securitytracker.com/id?1018810http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=738962http://www.debian.org/security/2008/dsa-1571http://www.gentoo.org/security/en/glsa/glsa-200805-07.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:237http://www.openssl.org/news/secadv_20071012.txthttp://www.redhat.com/support/errata/RHSA-2007-0964.htmlhttp://www.securityfocus.com/archive/1/482167/100/0/threadedhttp://www.securityfocus.com/bid/26055http://www.vupen.com/english/advisories/2007/3487http://www.vupen.com/english/advisories/2007/4219http://www.vupen.com/english/advisories/2008/1937/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/37185https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10288https://usn.ubuntu.com/534-1/https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00218.htmlhttp://bugs.gentoo.org/show_bug.cgi?id=195634http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01299773http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.htmlhttp://secunia.com/advisories/25878http://secunia.com/advisories/27205http://secunia.com/advisories/27217http://secunia.com/advisories/27271http://secunia.com/advisories/27363http://secunia.com/advisories/27434http://secunia.com/advisories/27933http://secunia.com/advisories/28084http://secunia.com/advisories/30161http://secunia.com/advisories/30220http://secunia.com/advisories/30852http://security.gentoo.org/glsa/glsa-200710-30.xmlhttp://securitytracker.com/id?1018810http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=738962http://www.debian.org/security/2008/dsa-1571http://www.gentoo.org/security/en/glsa/glsa-200805-07.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:237http://www.openssl.org/news/secadv_20071012.txthttp://www.redhat.com/support/errata/RHSA-2007-0964.htmlhttp://www.securityfocus.com/archive/1/482167/100/0/threadedhttp://www.securityfocus.com/bid/26055http://www.vupen.com/english/advisories/2007/3487http://www.vupen.com/english/advisories/2007/4219http://www.vupen.com/english/advisories/2008/1937/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/37185https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10288https://usn.ubuntu.com/534-1/https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00218.html
2007-10-13
Published