Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarSSL before 1.1.8, when using TLS 1.1, might allow remote attackers to execute arbitrary code via a long packet.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Offspark PolarSSL ‘ssl_read_record()’函数远程缓冲区溢出漏洞
Vulnerability Description
Offspark PolarSSL是荷兰Offspark公司的一个SSL加密库。该库具有便于移植和集成的特点。 PolarSSL 1.1.8之前的版本中的ssl_tls.c文件中的ssl_read_record函数中存在缓冲区溢出漏洞,该漏洞源于当使用TLS 1.1版本时,ssl_read_record函数没有正确检查输入数据的长度值。远程攻击者可通过发送较长的数据包利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A