CVE-2009-1378

OpenSSL 0.9.8-0.9.8k - Denial of Service via DTLS Fragment Handling Memory Leak

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1378. PoCs published by Jon Oberheide.

AI-analyzed exploit summary This exploit targets a memory exhaustion vulnerability in OpenSSL's DTLS implementation (CVE-2009-1378). It sends out-of-sequence handshake messages to exhaust memory on the target server.

Description

Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka "DTLS fragment handling memory leak."

Exploits (1)

exploitdb WORKING POC VERIFIED
by Jon Oberheide · cdosmultiple
https://www.exploit-db.com/exploits/8720

This exploit targets a memory exhaustion vulnerability in OpenSSL's DTLS implementation (CVE-2009-1378). It sends out-of-sequence handshake messages to exhaust memory on the target server.

Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: OpenSSL <= 0.9.8k, 1.0.0-beta2
No auth needed
Prerequisites: Network access to the target DTLS server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (37)

Core 37
Core References
Broken Link, Tool Signature vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7229
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/8720
Permissions Required, Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1377
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1022241
Broken Link, Third Party Advisory x_refsource_confirm
http://rt.openssl.org/Ticket/Display.html?id=1931&user=guest&pass=guest
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42724
Mailing List, Third Party Advisory vendor-advisory x_refsource_slackware
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.663049
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38794
Third Party Advisory mailing-list x_refsource_mlist
http://lists.vmware.com/pipermail/security-announce/2010/000082.html
Broken Link, Tool Signature vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11309
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35729
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200912-01.xml
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-1335.html
Broken Link, Patch, Vendor Advisory x_refsource_confirm
http://cvs.openssl.org/chngview?cn=18188
Broken Link, Third Party Advisory vendor-advisory x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38761
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37003
Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://marc.info/?l=openssl-dev&m=124263491424212&w=2
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36533
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-792-1
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html
Third Party Advisory x_refsource_confirm
http://voodoo-circle.sourceforge.net/sa/sa-20091012-01.html
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/05/18/1
Third Party Advisory x_refsource_misc
https://launchpad.net/bugs/cve/2009-1378
Broken Link, Third Party Advisory vendor-advisory x_refsource_netbsd
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-009.txt.asc
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/35001
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38834
Not Applicable vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2009:120
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35461
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35128
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35571
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35416
Broken Link x_refsource_confirm
https://kb.bluecoat.com/index?page=content&id=SA50
Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
http://marc.info/?l=openssl-dev&m=124247679213944&w=2
Not Applicable, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42733
Permissions Required, Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0528

Scores

EPSS 0.1275
EPSS Percentile 95.8%

Details

CWE
CWE-401
Status published
Products (5)
canonical/ubuntu_linux 6.06
canonical/ubuntu_linux 8.04
canonical/ubuntu_linux 8.10
canonical/ubuntu_linux 9.04
openssl/openssl 0.9.8 - 0.9.8m
Published May 19, 2009
Tracked Since Feb 18, 2026