VDB

CNVD-2016-02676

CNVD-2016-02676 PUBLISHED

OpenSSL是一个实现安全套接层和安全传输层协议的通用开源加密库,可支持多种加密算法,包括对称密码、哈希算法、安全散列算法等。 OpenSSL EBCDIC存在越界读漏洞。当程序使用EBCDIC系统X509_NAME_oneline()函数,ASN1字符串超过1024字节可导致越界读,进而可导致在缓冲区返回任意堆栈的数据。

Timeline

  • May 4, 2016 CVE ID Reserved
  • May 4, 2016 CVE Published
  • Oct 2, 2020 PoC Published
  • Nov 6, 2020 PoC Published
  • Sep 6, 2021 PoC Published
  • Oct 9, 2024 PoC Published
  • Dec 12, 2024 PoC Published
  • Mar 28, 2025 PoC Published
  • Sep 26, 2025 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›