cbcvebase.
CVE-2014-3507
published 2014-08-13

CVE-2014-3507: Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to…

PriorityP433medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
51.44%
98.8th percentile
Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.

Affected

56 ranges· showing 25
VendorProductVersion rangeFixed in
debianopenssl< openssl 1.0.1i-1 (bookworm)openssl 1.0.1i-1 (bookworm)
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl

Detection & IOCsextracted from sources · hover to see the quote

  • The vulnerability is triggered by zero-length DTLS fragments sent to a DTLS server or client; monitor for DTLS traffic containing zero-length fragment payloads as a potential exploitation indicator.
  • The vulnerable code resides in d1_both.c within the DTLS implementation of OpenSSL; focus code-level detection or integrity monitoring on this file.
  • An attacker can force OpenSSL to leak memory indefinitely via crafted DTLS packets; watch for sustained memory growth in processes using OpenSSL over DTLS (UDP port 4433 or application-specific DTLS ports).
  • ·Affected OpenSSL versions are 0.9.8o through pre-0.9.8zb, 1.0.0a through pre-1.0.0n, and 1.0.1 through pre-1.0.1i. OpenSSL 0.9.8e (used in RHEL 5) and 1.0.0 packages in RHEL 6 prior to the 1.0.1e rebase are NOT affected.
  • ·The flaw can affect both DTLS servers and DTLS clients using vulnerable OpenSSL versions, broadening the attack surface beyond server-only deployments.

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
vendor_ubuntu5.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.