Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
OpenSSL Uncontrolled Resource Consumption Vulnerability - CVE-2016-6307 - Vulnerability Database
OpenSSL

OpenSSL Uncontrolled Resource Consumption Vulnerability - CVE-2016-6307

Medium
Reference: CVE-2016-6307
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-6307
Title: OpenSSL Uncontrolled Resource Consumption Vulnerability
Overview:

The state-machine implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length which might allow remote attackers to cause a denial of service (memory consumption) via crafted TLS messages related to statem/statem.c and statem/statem_lib.c.