CVE-2010-2939
Last modified
CVE-2010-2939 is a vulnerability of currently unknown severity. Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.. EPSS estimates a 9.98% chance of exploitation in the next 30 days.
Description
Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Openssl | Openssl | 0.9.7 |
| Openssl | Openssl | 0.9.8 |
| Openssl | Openssl | 1.0.0a |
References
- http://secunia.com/advisories/40906Vendor Advisory
- http://www.vupen.com/english/advisories/2010/2038Vendor Advisory
- http://secunia.com/advisories/40906Vendor Advisory
- http://www.vupen.com/english/advisories/2010/2038Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-2939?
How severe is CVE-2010-2939?
How do I fix CVE-2010-2939?
Are you affected by CVE-2010-2939?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST