Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Delegate | Delegate | 8.9.2 | 8.9.2 |
Delegate | Delegate | 8.3.3 | 8.3.3 |
Delegate | Delegate | 8.4.0 | 8.4.0 |
Delegate | Delegate | 7.8.0 | 7.8.0 |
Delegate | Delegate | 8.3.4 | 8.3.4 |
Delegate | Delegate | 8.5.0 | 8.5.0 |
Delegate | Delegate | 7.8.1 | 7.8.1 |
Delegate | Delegate | 8.9.1 | 8.9.1 |
Delegate | Delegate | 7.9.11 | 7.9.11 |
Delegate | Delegate | 7.7.1 | 7.7.1 |
Delegate | Delegate | 7.7.0 | 7.7.0 |
Delegate | Delegate | 8.9 | 8.9 |
Delegate | Delegate | 7.8.2 | 7.8.2 |