CVSS: 7.5EPSS: 7%CPEs: 1EXPL: 0CVE-2011-0651
https://notcve.org/view.php?id=CVE-2011-0651
Buffer overflow in the key exchange functionality in Icon Labs Iconfidant SSL Server before 1.3.0 allows remote attackers to execute arbitrary code via a client master key packet in which the sum of unspecified length fields is greater than a certain value. Desbordamiento de búfer en la funcionalidad de intercambio de claves en Icon Labs Iconfidant SSL Server anterior a v1.3.0 permite a atacantes remotos ejecutar código de su elección a través de un paquete de llave maestra de cliente donde la suma de campos de longitud no especificada es mayor de cierto valor. • http://osvdb.org/70599 http://secunia.com/advisories/42971 http://www.securityfocus.com/bid/45938 http://www.zerodayinitiative.com/advisories/ZDI-11-021 https://exchange.xforce.ibmcloud.com/vulnerabilities/64868 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •