NVD Vulnerability Detail

CVE-2002-0655

Summary	OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.
Publication Date	Aug. 12, 2002, 1 p.m.
Registration Date	Jan. 29, 2021, 6:04 p.m.
Last Update	Sept. 11, 2008, 4:12 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:openssl:openssl:0.9.1c:::::::*
cpe:2.3:a:openssl:openssl:0.9.2b:::::::*
cpe:2.3:a:openssl:openssl:0.9.3:::::::*
cpe:2.3:a:openssl:openssl:0.9.4:::::::*
cpe:2.3:a:openssl:openssl:0.9.5:::::::*
cpe:2.3:a:openssl:openssl:0.9.5a:::::::*
cpe:2.3:a:openssl:openssl:0.9.6:::::::*
cpe:2.3:a:openssl:openssl:0.9.6a:::::::*
cpe:2.3:a:openssl:openssl:0.9.6b:::::::*
cpe:2.3:a:openssl:openssl:0.9.6c:::::::*
cpe:2.3:a:openssl:openssl:0.9.6d:::::::*
cpe:2.3:a:openssl:openssl:0.9.7:beta1::::::
cpe:2.3:a:openssl:openssl:0.9.7:beta2::::::
cpe:2.3:a:oracle:application_server::::::::
cpe:2.3:a:oracle:application_server:1.0.2:::::::*
cpe:2.3:a:oracle:application_server:1.0.2.1s:::::::*
cpe:2.3:a:oracle:application_server:1.0.2.2:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.1:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.1.1:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.1.2:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.3:::::::*
cpe:2.3:a:oracle:http_server:9.0.1:::::::*
cpe:2.3:a:oracle:http_server:9.2.0:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.0.txt	CALDERA
2	ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.1.txt	CALDERA
3	ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:33.openssl.asc	FREEBSD
4	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000513	CONECTIVA
5	http://www.cert.org/advisories/CA-2002-23.html	CERT	US Government Resource
6	http://www.kb.cert.org/vuls/id/308891	CERT-VN	US Government Resource
7	http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-046.php	MANDRAKE
8	http://www.securityfocus.com/bid/5364	BID

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:openssl:openssl:0.9.1c:::::::*
cpe:2.3:a:openssl:openssl:0.9.2b:::::::*
cpe:2.3:a:openssl:openssl:0.9.3:::::::*
cpe:2.3:a:openssl:openssl:0.9.4:::::::*
cpe:2.3:a:openssl:openssl:0.9.5:::::::*
cpe:2.3:a:openssl:openssl:0.9.5a:::::::*
cpe:2.3:a:openssl:openssl:0.9.6:::::::*
cpe:2.3:a:openssl:openssl:0.9.6a:::::::*
cpe:2.3:a:openssl:openssl:0.9.6b:::::::*
cpe:2.3:a:openssl:openssl:0.9.6c:::::::*
cpe:2.3:a:openssl:openssl:0.9.6d:::::::*
cpe:2.3:a:openssl:openssl:0.9.7:beta1::::::
cpe:2.3:a:openssl:openssl:0.9.7:beta2::::::
cpe:2.3:a:oracle:application_server::::::::
cpe:2.3:a:oracle:application_server:1.0.2:::::::*
cpe:2.3:a:oracle:application_server:1.0.2.1s:::::::*
cpe:2.3:a:oracle:application_server:1.0.2.2:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.1:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.1.1:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.1.2:::::::*
cpe:2.3:a:oracle:corporate_time_outlook_connector:3.3:::::::*
cpe:2.3:a:oracle:http_server:9.0.1:::::::*
cpe:2.3:a:oracle:http_server:9.2.0:::::::*