Oval Definition:oval:org.cisecurity:def:731
Revision Date:2016-07-01Version:34
Title:Double free vulnerability in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g (CVE-2016-0705)
Description:Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2016-0705
cpuapr2016v3-2985753
Platform(s):Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):OpenSSL
Definition Synopsis
  • OpenSSL 1.0.1 section
  • Check OpenSSL 1.0.1 version from installer
  • OpenSSL is installed
  • AND Check if the version of OpenSSL 1.0.1 is greater than or equal 1.0.1.0 and less than 1.0.1.19 from installer
  • OR Check OpenSSL 1.0.1 version from installer (32_bit)
  • OpenSSL (32_bit) is installed
  • AND Check if the version of OpenSSL 1.0.1 is greater than or equal 1.0.1.0 and less than 1.0.1.19 from installer (32_bit)
  • OR Check if the version of OpenSSL 1.0.1 is greater than or equal 1.0.1.0 and less than 1.0.1.19 ProgramFilesDir
  • OR Check if the version of OpenSSL 1.0.1 is greater than or equal 1.0.1.0 and less than 1.0.1.19 ProgramFilesDir x86
  • OR Check if the version of OpenSSL 1.0.1 is greater than or equal 1.0.1.0 and less than 1.0.1.19 under Sytem32 and SysWOW64
  • OR OpenSSL 1.0.2 section
  • Check OpenSSL 1.0.2 version from installer
  • OpenSSL is installed
  • AND Check if the version of OpenSSL 1.0.2 is greater than or equal 1.0.2.0 and less than 1.0.2.7 from installer
  • OR Check OpenSSL 1.0.2 version from installer (32_bit)
  • OpenSSL (32_bit) is installed
  • AND Check if the version of OpenSSL 1.0.2 is greater than or equal 1.0.2.0 and less than 1.0.2.7 from installer (32_bit)
  • OR Check if the version of OpenSSL 1.0.2 is greater than or equal 1.0.2.0 and less than 1.0.2.7 ProgramFilesDir
  • OR Check if the version of OpenSSL 1.0.2 is greater than or equal 1.0.2.0 and less than 1.0.2.7 ProgramFilesDir x86
  • OR Check if the version of OpenSSL 1.0.2 is greater than or equal 1.0.2.0 and less than 1.0.2.7 under Sytem32 and SysWOW64
    • BACK