AnsweredAssumed Answered

openssl multiple remote security disappear but 2 new

Question asked by badr barkaoui on May 10, 2016

I want to understand why i had an unusual increase in the number of vulnerabilities between 2 montly scans.

The first scan found a vulnerability that is openssl multiple remote security vulnerabilities

The second scan, this vulnerability have disappeared but 2 new vulnerabilty have appeared .

- OpenSSL ASCII Representation Of integer Buffer Overflow

- OpenSSL SSLv2 Malformed Client Key Remote Buffer Overflow

I don't understand because these vulnerabilities exist since 2009 and i never found them before.

No update or modifcation have been realised during this period.

I think the first vulnerability have been divided into 2 vulnerabilities

Maybe i wrong, need some help to understand