CVE-2002-0657
OpenSSL 0.9.7 - Buffer Overflow via Long Master Key with Kerberos Enabled
Title source: llmDescription
Buffer overflow in OpenSSL 0.9.7 before 0.9.7-beta3, with Kerberos enabled, allows attackers to execute arbitrary code via a long master key.
References (9)
Core 9
Core References
Various Sources vendor-advisory
x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-046.php
Patch, Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert
http://www.cert.org/advisories/CA-2002-23.html
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/561275
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9715.php
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/5361
Various Sources vendor-advisory
x_refsource_caldera
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.0.txt
Various Sources vendor-advisory
x_refsource_caldera
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.1.txt
Vendor Advisory vendor-advisory
x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000513
Various Sources vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:33.openssl.asc
Scores
EPSS
0.0368
EPSS Percentile
88.1%
Details
Status
published
Products (1)
openssl/openssl
0.9.7 beta1 (2 CPE variants)
Published
Aug 12, 2002
Tracked Since
Feb 18, 2026