Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2016-0705

Published

8 years ago

Last Modified

5 months ago

CVSSv2.0 Severity

High

CVSSv3.1 Severity

Critical

Impact Analysis

Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key..

CVSSv2.0 Score

Severity: High
Base Score: 10/10
Exploit Score: 10/10
Access Vector: Network
Access Complexity: Low
Authentication Required: None
Impact Score: 10/10
Confidentiality Impact: Complete
Availability Impact: Complete
Integrity Impact: Complete

CVSSv3.1 Score

Severity: Critical
Base Score: 9.8/10
Exploit Score: 3.9/10
Access Vector: Network
Access Complexity: Low
Privileges Required: None
Impact Score: 5.9/10
Confidentiality Impact: High
Availability Impact: High
Integrity Impact: High
Scope: Unchanged
User Interaction: None

Products Affected

CPE	Affected	Vulnerable	Excluding
cpe:2.3:a:oracle:mysql::::::::	Yes	5.6.0	-
cpe:2.3:a:oracle:mysql::::::::	Yes	5.7.0	-
cpe:2.3:a:openssl:openssl:1.0.1m:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2a:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1j:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1:beta2::::::	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1h:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2e:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1r:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2b:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1c:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1g:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1:beta3::::::	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1a:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1:beta1::::::	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1d:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2c:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2:beta3::::::	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1p:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2:beta1::::::	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1k:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1b:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1n:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1q:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1e:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1l:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1f:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1o:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2f:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1i:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2:beta2::::::	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.1:::::::*	Yes	-	-
cpe:2.3:a:openssl:openssl:1.0.2d:::::::*	Yes	-	-
cpe:2.3:o:google:android:5.1.0:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.2:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:6.0.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:6.0:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.0.2:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.4.3:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.0.4:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.3:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.0.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.2.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:5.0.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:5.0:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.0.3:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.0:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.4:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.4.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.2.2:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.3.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.4.2:::::::*	Yes	-	-
cpe:2.3:o:google:android:5.1:::::::*	Yes	-	-
cpe:2.3:o:google:android:4.1.2:::::::*	Yes	-	-
cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::	Yes	-	-
cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*	Yes	-	-
cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::	Yes	-	-
cpe:2.3:o:debian:debian_linux:8.0:::::::*	Yes	-	-
cpe:2.3:o:debian:debian_linux:7.0:::::::*	Yes	-	-

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2016-0705

Published

Last Modified

CVSSv2.0 Severity

CVSSv3.1 Severity

Impact Analysis

Share

CVSSv2.0 Score

CVSSv3.1 Score

Products Affected

References

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2016-0705

CVE information

Published

Last Modified

CVSSv2.0 Severity

CVSSv3.1 Severity

Impact Analysis

Share

Description

CVSSv2.0 Score

CVSSv3.1 Score

Products Affected

References