CVE-2015-0207 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Openssl

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-20 — Improper Input Validation CWE-310 CWE-822 — Untrusted Pointer Dereference21 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

32.6%

top 3.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Cisco Products Debian Openssl

Timeline

PublishedMar 19

Latest updateDec 19

Description

The dtls1_listen function in d1_lib.c in OpenSSL 1.0.2 before 1.0.2a does not properly isolate the state information of independent data streams, which allows remote attackers to cause a denial of service (application crash) via crafted DTLS traffic, as demonstrated by DTLS 1.0 traffic to a DTLS 1.2 server.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/openssl

▶NVDopenssl/openssl1.0.2

▶ciscocisco/products

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-hj9v-2jmr-qwcf: The dtls1_listen function in d1_lib↗2022-05-14

▶

📋Vendor Advisories

CISA ICS

Siemens SCALANCE X-200RNA Switch Devices↗2022-12-19

▶

CISA ICS

Rockwell Automation Stratix 5900↗2017-05-10

▶

Cisco

Multiple Vulnerabilities in OpenSSL (March 2015) Affecting Cisco Products↗2015-03-20

▶

Red Hat

openssl: DTLS segmentation fault in DTLSv1_listen↗2015-03-19

▶

Debian

CVE-2015-0207: openssl - The dtls1_listen function in d1_lib.c in OpenSSL 1.0.2 before 1.0.2a does not pr...↗2015

▶

💬Community

Bugzilla

CVE-2015-0207 openssl: DTLS segmentation fault in DTLSv1_listen↗2015-03-16

▶