Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2013-5914

Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarSSL before 1.1.8, when using TLS 1.1, might allow remote attackers to execute arbitrary code via a long packet.

  • Published: Oct 26, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-5914
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
polarssl / polarssl 1.0.0 1.0.0.x
polarssl / polarssl 1.1.3 1.1.3.x
polarssl / polarssl 1.1.4 1.1.4.x
polarssl / polarssl 1.1.6 1.1.6.x
polarssl / polarssl 1.1.1 1.1.1.x
polarssl / polarssl 1.1.2 1.1.2.x
polarssl / polarssl 1.1.0-rc1 1.1.0-rc1.x
polarssl / polarssl 1.1.5 1.1.5.x
polarssl / polarssl 1.1.0-rc0 1.1.0-rc0.x
polarssl / polarssl 1.1.0 1.1.0.x
polarssl / polarssl - 1.1.7.x