VDB
CVE-2003-0851
CVE-2003-0851
PUBLISHED
CVSS 5 MEDIUM
OpenSSL 0.9.6k allows remote attackers to cause a denial of service (crash via large recursion) via malformed ASN.1 sequences.
EPSS 4.24% · 89.0th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
4.24%
89.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| openssl | openssl | *, *, * |
| cisco | css11000_content_services_switch | |
| cisco | ios | *, 12.1\(11b\)e, 12.2sx |
| cisco | pix_firewall_software | 6.3\(3.102\), 6.3\(1\), 6.2\(3\) |
| cisco | pix_firewall | 6.2.2_.111 |
Exploit Intelligence
- oval:org.mitre.oval:def:5528 (circl)
- FEDORA-2005-1042 (circl)
- 20040304-01-U (circl)
- 17381 (circl)
- NetBSD-SA2004-003 (circl)
- 20030930 SSL Implementation Vulnerabilities (circl)
- 8970 (circl)
- 20031104 [OpenSSL Advisory] Denial of Service in ASN.1 parsing (circl)
- RHSA-2004:119 (circl)
- http://www.openssl.org/news/secadv_20031104.txt (circl)
…and 2 more exploits
Timeline
- Jul 18, 2003 CVE Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Nov 21, 2023 EPSS Score
References
- oval:org.mitre.oval:def:5528 vdb
- FEDORA-2005-1042 vendor-advisory
- 20040304-01-U vendor-advisory
- 17381 third-party-advisory
- NetBSD-SA2004-003 vendor-advisory
- 20030930 SSL Implementation Vulnerabilities vendor-advisory
- 8970 vdb
- 20031104 [OpenSSL Advisory] Denial of Service in ASN.1 parsing mailing-list
- RHSA-2004:119 vendor-advisory
- http://www.openssl.org/news/secadv_20031104.txt url
- VU#412478 third-party-advisory
- 20040508 [FLSA-2004:1395] Updated OpenSSL resolves security vulnerability mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2003-0851 advisory