CVE-2016-2109

HIGH

Openssl < 1.0.1s - Resource Management Error

Title source: rule

Description

The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.

Exploits (1)

github WORKING POC 8 stars

by codecat007 · cpoc

https://github.com/codecat007/cvehub/tree/main/android/securityPatch/CVE-2016-2109

View Code ZIP pw:eip

References (55)

[Mailing List] http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-0722.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-0996.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-2056.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-2073.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-2957.html

[Vendor Advisory] http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00016.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00018.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00019.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00029.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00030.html

[Various Sources] http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-openssl

[Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

[Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

[Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

[Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

... and 35 more

Scores

CVSS v3 7.5

EPSS 0.5927

EPSS Percentile 98.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-399

Status published

Products (20)

openssl/openssl 1.0.2 (4 CPE variants)

openssl/openssl 1.0.2a

openssl/openssl 1.0.2b

openssl/openssl 1.0.2c

openssl/openssl 1.0.2d

openssl/openssl 1.0.2e

openssl/openssl 1.0.2f

openssl/openssl 1.0.2g

openssl/openssl < 1.0.1s

redhat/enterprise_linux_desktop 7.0

... and 10 more

Published May 05, 2016

Tracked Since Feb 18, 2026