OpenSSL ASN.1 deallocation exploit v1.11 Vulnerability exploited: CAN-2003-0545 - BID-8132 Category: Exploits/Remote This module exploits a vulnerability in the OpenSSL library and installs a level0 agent into the target host. This module exploits a vulnerability in the OpenSSL library. OpenSSL versions 0.9.7-beta, 0.9.7, 0.9.7a and 0.9.7b are affected.The corresponding OpenSSL advisory states: "Certain ASN.1 encodings that are rejected as invalid by the parser can trigger a bug in the deallocation of the corresponding data structure". This module triggers this deallocation and abuses the dynamic memory allocator of vulnerable Linux systems in order to execute arbitrary code.3 different attack methods are available: Supported Systems: RedHat Linux 9 (i386) This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.