CVE-2009-3245
CRITICAL
10.0
CVSS Severity Score
Vulnerability Description
OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3) crypto/ec/ec2_smpl.c, and (4) engines/e_ubsec.c, which has unspecified impact and context-dependent attack vectors.
Affected Platforms (CPE)
π¦
Openssl
Openssl
<= 0.9.8lπ¦
Openssl
Openssl
= 0.9.8π¦
Openssl
Openssl
= 0.9.8aπ¦
Openssl
Openssl
= 0.9.8bπ¦
Openssl
Openssl
= 0.9.8cπ¦
Openssl
Openssl
= 0.9.8dπ¦
Openssl
Openssl
= 0.9.8eπ¦
Openssl
Openssl
= 0.9.8fπ¦
Openssl
Openssl
= 0.9.8gπ¦
Openssl
Openssl
= 0.9.8hπ¦
Openssl
Openssl
= 0.9.8iπ¦
Openssl
Openssl
= 0.9.8jπ¦
Openssl