Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
OpenSSL Resource Management Errors Vulnerability - CVE-2016-6308 - Vulnerability Database
OpenSSL

OpenSSL Resource Management Errors Vulnerability - CVE-2016-6308

Medium
Reference: CVE-2016-6308
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-6308
Title: OpenSSL Resource Management Errors Vulnerability
Overview:

statem/statem_dtls.c in the DTLS implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length which might allow remote attackers to cause a denial of service (memory consumption) via crafted DTLS messages.