CVE-2014-0195

CVE Database · CVE-2014-0195

CVE-2014-0195

· N/AModified

CVSS v3.1

N/A

EPSS

99.98%

Published

Jun 5, 2014

Modified

May 6, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.

Weaknesses (CWE)

CWE-120

Affected Products (8)

openssl · openssl (up to 0.9.8za)vulnerable

openssl · openssl (up to 1.0.0m)vulnerable

openssl · openssl (up to 1.0.1h)vulnerable

mariadb · mariadb (up to 10.0.13)vulnerable

opensuse · leapvulnerable

opensuse · opensusevulnerable

fedoraproject · fedoravulnerable

References (20)

http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc