This application requires Javascript for optimal performance.

MySQL.YaSSL.CertDecoder.GetName.Buffer.Overflow

Release Date

Mar 11, 2010

Severity

medium

Impact

Denial of services or System compromise

Description

This indicates s possible attack against a buffer overflow vulnerability in yaSSL which could be exploited to cause Denial of services or arbitrary code execution due to an error in the processing of SSL certificates.

Affected Products

yaSSL prior to 1.9.9

Recommended Actions

Update to version 1.9.9.

Coverage

IPS
VCM

Common Vulnerabilities and Exposures (CVE)

CVE-2009-4484

Reference/s

http://www.securityfocus.com/bid/37943 (BugTraq)

Reference: VID-18153