Vulnerabilities > Openssl > Openssl > 0.9.6d

DATE CVE VULNERABILITY TITLE RISK
2002-08-12 CVE-2002-0656 Buffer Overflow vulnerability in OpenSSL SSLv3 Session ID
Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attackers to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.
network
low complexity
openssl oracle apple
7.5
7.5
2002-08-12 CVE-2002-0655 Buffer Overflow vulnerability in OpenSSL ASCII Representation Of Integers
OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.
network
low complexity
openssl oracle apple
7.5
7.5