OpenSSL DTLS SRTP Extension Parsing Denial of Service (CVE-2014-3513)

February 10, 2015 007admin Leave a comment

A denial-of-service vulnerability exists in OpenSSL. A remote, unauthenticated attacker can send crafted handshake messages to cause memory leaks, exhaust system memory and create a denial of service condition on an application using the vulnerable library.

007 Software

OpenSSL DTLS SRTP Extension Parsing Denial of Service (CVE-2014-3513)

Leave a Reply Cancel reply

Software and Security Information