CVE-2016-2106

CWE-189 CWE-190 — Integer Overflow CWE-122 — Heap-based Buffer Overflow CWE-119 — Buffer Overflow CWE-200 — Information Exposure CWE-31019 documents13 sources

Severity

7.5HIGH

EPSS

67.3%

top 1.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Openssl Redhat Enterprise Linux Desktop Redhat Enterprise Linux HPC Node +5 more

Timeline

PublishedMay 5

Latest updateMay 14

Description

Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

▶Debianopenssl< 1.0.2h-1+3

▶NVDopenssl/openssl1.0.1s+8

▶NVDredhat/enterprise_linux_server6.0, 7.0+1

▶NVDredhat/enterprise_linux_desktop6.0, 7.0+1

▶NVDredhat/enterprise_linux_hpc_node6.0, 7.0, 7.2+2

Also affects: Enterprise Linux 7.2

🔴Vulnerability Details

GHSA

GHSA-j7jq-c44j-q74h: Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc↗2022-05-14

▶

CVEList

CVE-2016-2106: Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc↗2016-05-05

▶

OSV

CVE-2016-2106: Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc↗2016-05-05

▶

💥Exploits & PoCs

Metasploit

Microsoft Exchange ProxyLogon Collector↗

▶

Metasploit

Microsoft Exchange ProxyLogon Scanner↗

▶

📋Vendor Advisories

Apple

CVE-2016-2106: OS X El Capitan v10.11.6 and Security Update 2016-004↗2016-07-18

▶

BSD

FreeBSD-SA-16:17.openssl: Multiple OpenSSL vulnerabilities↗2016-05-04

▶

Cisco

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: May 2016↗2016-05-04

▶

Red Hat

openssl: EVP_EncryptUpdate overflow↗2016-05-03

▶

Ubuntu

OpenSSL vulnerabilities↗2016-05-03

▶

💬Community

Bugzilla

CVE-2016-2106 openssl: EVP_EncryptUpdate overflow [jbews-2.1.0]↗2016-05-18

▶

HackerOne

EVP_EncryptUpdate overflow (CVE-2016-2106)↗2016-05-03

▶

Bugzilla

CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 mingw-openssl: various flaws [epel-7]↗2016-05-03

▶

Bugzilla

CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 openssl: various flaws [fedora-all]↗2016-05-03

▶

Bugzilla

CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 mingw-openssl: various flaws [fedora-all]↗2016-05-03

▶