CVE-2006-7250
OpenSSL < 0.9.8t - Denial of Service via Crafted S/MIME Message
Title source: llmDescription
The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message.
References (15)
Core 15
Core References
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/02/27/10
Patch x_refsource_confirm
https://bugzilla.novell.com/show_bug.cgi?id=748738
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/48516
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/48899
Mailing List mailing-list
x_refsource_mlist
http://marc.info/?l=openssl-dev&m=115685408414194&w=2
Mailing List mailing-list
x_refsource_mlist
http://www.mail-archive.com/openssl-dev%40openssl.org/msg30305.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-1335.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/52181
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36533
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1424-1
Patch x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=798100
Patch x_refsource_confirm
http://cvs.openssl.org/chngview?cn=22144
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/02/28/14
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/48153
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=133728068926468&w=2
Scores
EPSS
0.0200
EPSS Percentile
83.9%
Details
Status
published
Products (34)
openssl/openssl
0.9.1c
openssl/openssl
0.9.2b
openssl/openssl
0.9.3
openssl/openssl
0.9.3a
openssl/openssl
0.9.4
openssl/openssl
0.9.5 (3 CPE variants)
openssl/openssl
0.9.5a (3 CPE variants)
openssl/openssl
0.9.6 (4 CPE variants)
openssl/openssl
0.9.6a (4 CPE variants)
openssl/openssl
0.9.6b
... and 24 more
Published
Feb 29, 2012
Tracked Since
Feb 18, 2026