CVE-2002-0082

Apache mod_ssl < 2.8.7 OpenSSL - 'OpenFuckV2.c' Remote Buffer Overflow

Severity Score

7.5

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The dbm and shm session cache code in mod_ssl before 2.8.7-1.3.23, and Apache-SSL before 1.3.22+1.46, does not properly initialize memory using the i2d_SSL_SESSION function, which allows remote attackers to use a buffer overflow to execute arbitrary code via a large client certificate that is signed by a trusted Certificate Authority (CA), which produces a large serialized session.

El código de mod_ssl dbm y shm cache anteriores a 2.8.7-1.3.23 y Apache-SSL anteriores a 1.3.22 1.46 no inicializa adecuadamente la memoria usando la función i2d_SSL_SESSION, lo que permite a atacantes remotos usar un desbordamiento de buffer para ejecutar código arbitrario mediante un certificado de cliente largo firmado por una Autoricad Certificadora (CA) larga, lo que produce una sesión serializada larga.

*Credits: N/A

CVSS Scores

NISTv2 7.5

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2002-03-01 CVE Reserved
2002-03-15 CVE Published
2002-07-30 First Exploit
2024-02-08 EPSS Updated
2024-08-08 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (23)

URL	Tag	Source
http://marc.info/?l=bugtraq&m=101518491916936&w=2	Mailing List
http://marc.info/?l=bugtraq&m=101528358424306&w=2	Mailing List
http://online.securityfocus.com/archive/1/258646	Mailing List
http://packetstormsecurity.com/files/153567/Apache-mod_ssl-OpenSSL-Remote-Buffer-Overflow.html	X_refsource_misc
http://www.apacheweek.com/issues/02-03-01#security	X_refsource_confirm
http://www.securityfocus.com/bid/4189	Vdb Entry

URL	Date	SRC
https://www.exploit-db.com/exploits/47080	2019-07-07
https://www.exploit-db.com/exploits/21671	2002-07-30
https://www.exploit-db.com/exploits/764	2003-04-04

URL	Date	SRC
http://www.iss.net/security_center/static/8308.php	2016-10-18

URL	Date	SRC
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000465	2016-10-18
http://ftp.support.compaq.com/patches/.new/html/SSRT0817.shtml	2016-10-18
http://www.calderasystems.com/support/security/advisories/CSSA-2002-011.0.txt	2016-10-18
http://www.debian.org/security/2002/dsa-120	2016-10-18
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-020.php	2016-10-18
http://www.linuxsecurity.com/advisories/other_advisory-1923.html	2016-10-18
http://www.redhat.com/support/errata/RHSA-2002-041.html	2016-10-18
http://www.redhat.com/support/errata/RHSA-2002-042.html	2016-10-18
http://www.redhat.com/support/errata/RHSA-2002-045.html	2016-10-18
http://www.securityfocus.com/advisories/3965	2016-10-18
http://www.securityfocus.com/advisories/4008	2016-10-18
https://access.redhat.com/security/cve/CVE-2002-0082	2002-03-08
https://bugzilla.redhat.com/show_bug.cgi?id=1616740	2002-03-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Apache-ssl Search vendor "Apache-ssl"		Apache-ssl Search vendor "Apache-ssl" for product "Apache-ssl"				1.40 Search vendor "Apache-ssl" for product "Apache-ssl" and version "1.40"		-		Affected
Apache-ssl Search vendor "Apache-ssl"		Apache-ssl Search vendor "Apache-ssl" for product "Apache-ssl"				1.41 Search vendor "Apache-ssl" for product "Apache-ssl" and version "1.41"		-		Affected
Apache-ssl Search vendor "Apache-ssl"		Apache-ssl Search vendor "Apache-ssl" for product "Apache-ssl"				1.42 Search vendor "Apache-ssl" for product "Apache-ssl" and version "1.42"		-		Affected
Apache-ssl Search vendor "Apache-ssl"		Apache-ssl Search vendor "Apache-ssl" for product "Apache-ssl"				1.44 Search vendor "Apache-ssl" for product "Apache-ssl" and version "1.44"		-		Affected
Apache-ssl Search vendor "Apache-ssl"		Apache-ssl Search vendor "Apache-ssl" for product "Apache-ssl"				1.45 Search vendor "Apache-ssl" for product "Apache-ssl" and version "1.45"		-		Affected
Apache-ssl Search vendor "Apache-ssl"		Apache-ssl Search vendor "Apache-ssl" for product "Apache-ssl"				1.46 Search vendor "Apache-ssl" for product "Apache-ssl" and version "1.46"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.7.1 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.7.1"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.8 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.8"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.8.1 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.8.1"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.8.2 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.8.2"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.8.3 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.8.3"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.8.4 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.8.4"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.8.5 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.8.5"		-		Affected
Mod Ssl Search vendor "Mod Ssl"		Mod Ssl Search vendor "Mod Ssl" for product "Mod Ssl"				2.8.6 Search vendor "Mod Ssl" for product "Mod Ssl" and version "2.8.6"		-		Affected