Sales Chat - Click Here

Denial of Service (DoS) Vulnerability in OpenSSL crypto/ts/ts_lib.c (CVE-2016-2180)

Mar 10, 2023

DoS Vulnerability in crypto/ts/ts_lib.c in OpenSSL's X.509 Public Key Infrastructure Timestamp Protocol Implementation (CVE-2016-2180)

Summary

This issue is resolved by Firmware 4.80 or later.

Vulnerability ID Vulnerability Overview
CVE-2016-2180 The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted time-stamp file that is mishandled by the "openssl ts" command.

Affected Supported TeraStations

TS5010
TS3020/TS3010

Back to Security Notices

Date Description
3/10/2022 Initial release
X