Vulnerability Description
Multiple vulnerabilities in the OpenSSL ASN.1 parser, as used in Novell iManager 2.0.2, allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted packets, as demonstrated by "OpenSSL ASN.1 brute forcer." NOTE: this issue might overlap CVE-2004-0079, CVE-2004-0081, or CVE-2004-0112.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Imanager | <= 2.0.2 |
References
- http://www.cirt.dk/advisories/cirt-32-advisory.pdfVendor Advisory
- http://www.securityfocus.com/bid/8732
- http://www.securityfocus.com/data/vulnerabilities/exploits/ASN.1-Brute.cExploit
- http://www.vupen.com/english/advisories/2005/0744
- http://www.cirt.dk/advisories/cirt-32-advisory.pdfVendor Advisory
- http://www.securityfocus.com/bid/8732
- http://www.securityfocus.com/data/vulnerabilities/exploits/ASN.1-Brute.cExploit
- http://www.vupen.com/english/advisories/2005/0744
FAQ
What is CVE-2005-1730?
CVE-2005-1730 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple vulnerabilities in the OpenSSL ASN.1 parser, as used in Novell iManager 2.0.2, allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted packets, as demonstr...
How severe is CVE-2005-1730?
CVE-2005-1730 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1730?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Imanager.