What is CVE-2003-0545?

CVE-2003-0545 is a vulnerability in N/a. Published 2003-10-01.

Is CVE-2003-0545 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2003-0545

Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.

EPSS: 0.746 (98.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

RHSA-2003:292 (x_refsource_REDHAT, vendor-advisory)
ADV-2006-3900 (vdb-entry, x_refsource_VUPEN)
www-1.ibm.com/support/docview.wss (x_refsource_CONFIRM)
VU#935264 (x_refsource_CERT-VN, third-party-advisory)
www.uniras.gov.uk/vuls/2003/006489/openssl.htm (x_refsource_MISC)
DSA-394 (vendor-advisory, x_refsource_DEBIAN)
CA-2003-26 (x_refsource_CERT, third-party-advisory)
22249 (x_refsource_SECUNIA, third-party-advisory)
oval:org.mitre.oval:def:2590 (signature, x_refsource_OVAL, vdb-entry)
8732 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2003-0545?: CVE-2003-0545 is a vulnerability in N/a. Published 2003-10-01.
Is CVE-2003-0545 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.