CVE-2016-8610

HIGH

OpenSSL 0.9.8 1.0.1 1.0.2-1.0.2h 1.1.0 - Denial of Service via ALERT Packet Processing

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2016-8610. PoCs published by cujanovic, drent.

AI-analyzed exploit summary This repository contains a functional Python script that exploits CVE-2016-8610 (SSL Death Alert) by sending a large number of crafted SSL/TLS alert messages to a target server, causing a denial-of-service condition. The script supports multiple SSL/TLS versions and uses threading to amplify the attack.

Description

A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients.

Exploits (2)

nomisec WORKING POC 33 stars

by cujanovic · poc

https://github.com/cujanovic/CVE-2016-8610-PoC

View Code ZIP pw:eip

This repository contains a functional Python script that exploits CVE-2016-8610 (SSL Death Alert) by sending a large number of crafted SSL/TLS alert messages to a target server, causing a denial-of-service condition. The script supports multiple SSL/TLS versions and uses threading to amplify the attack.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: OpenSSL servers (versions affected by CVE-2016-8610)

No auth needed

Prerequisites: Network access to the target server · Target server must be running a vulnerable version of OpenSSL

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

gitlab WORKING POC

by drent · poc

https://gitlab.com/drent/CVE-2016-8610-PoC

View Code ZIP pw:eip

This repository contains a functional Python script that exploits CVE-2016-8610, a denial-of-service vulnerability in OpenSSL servers. The script sends a large number of SSL/TLS alert messages to overwhelm the target server.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: OpenSSL servers

No auth needed

Prerequisites: Network access to the target server · OpenSSL server running a vulnerable version

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (28)

Core 28

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/93841

Third Party Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2017-1659.html

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:1658

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:1801

Third Party Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2017-0286.html

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:1413

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:2494

Third Party Advisory vendor-advisory x_refsource_freebsd

https://security.FreeBSD.org/advisories/FreeBSD-SA-16:35.openssl.asc

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:1414

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

http://seclists.org/oss-sec/2016/q4/224

Third Party Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2017-0574.html

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2017/dsa-3773

Third Party Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2017-1415.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1037084

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:1802

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:2493

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpuapr2020.html

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpujul2020.html

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpujan2020.html

Third Party Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20171130-0001/

Issue Tracking, Patch, Third Party Advisory x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8610

Broken Link x_refsource_confirm

https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=af58be768ebb690f78530f796e92b8ae5c9a4401

Third Party Advisory x_refsource_misc

https://security.360.cn/cve/CVE-2016-8610/

Third Party Advisory x_refsource_confirm

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03897en_us

Third Party Advisory x_refsource_confirm

https://security.paloaltonetworks.com/CVE-2016-8610

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpuoct2020.html

Scores

CVSS v3 7.5

EPSS 0.7136

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-400

Status published

Products (50)

debian/debian_linux 8.0

fujitsu/m10-1_firmware < xcp2361

fujitsu/m10-4_firmware < xcp2361

fujitsu/m10-4s_firmware < xcp2361

fujitsu/m12-1_firmware < xcp2361

fujitsu/m12-2_firmware < xcp2361

fujitsu/m12-2s_firmware < xcp2361

netapp/clustered_data_ontap

netapp/clustered_data_ontap_antivirus_connector

netapp/cn1610_firmware

... and 40 more

Published Nov 13, 2017

Tracked Since Feb 18, 2026