← CVECheck
HomeVulnerabilities

CVE-2003-0544 — MEDIUM severity vulnerability (OpenSSL 0.9.6 and 0.9.7 does not properly track the number o)

OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used.

CVE IDCVE-2003-0544
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:N/A:P
CWENVD-CWE-Other
StatusModified
Published2003-11-17
Last modified2026-04-16
DescriptionOpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →