Stack-based Buffer Overflow in pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open

Stack-based Buffer Overflow in pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open

CVE-2019-10914 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsa_pub.c.

Learn more about our Web Application Penetration Testing UK.