CVE-2009-3767

Scores

EPSS

0.022very_low2.2%

0%20%40%60%80%100%

Percentile: 2.2%

CVSS

2.6low2.0

0246810

CVSS Score: 2.6/10

All CVSS Scores

CVSS 2.0

2.6

Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N

Description

libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4, and possibly other versions, when OpenSSL is used, does not properly handle a ‘\0’ character in a domain name in the subject’s Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.

Learn more about Scaner-VS 7

Sources

debiannvdredhatubuntu

CWEs

CWE-295

Related Vulnerabilities

BDU:2015-06080 BDU:2015-06122 BDU:2015-06123 BDU:2015-06124 BDU:2015-06125 BDU:2015-06126 BDU:2015-08561 BDU:2015-08562 BDU:2015-08563 BDU:2015-08564 BDU:2015-08565 BDU:2015-08566 BDU:2015-09683

Exploits

Exploit ID: 34348

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34348

Exploit ID: 35445

Source: exploitdb

URL: https://www.exploit-db.com/exploits/35445

Vulnerable Software (8)

Type: Configuration

Product: openldap

Operating System: rhel 4

Trait:

{  "fixed": "2.2.13-12.el4_8.3"}

Source: redhat

Type: Configuration

Product: openldap

Operating System: rhel 5

Trait:

{  "fixed": "2.3.43-12.el5"}

Source: redhat

Type: Configuration

Product: openldap

Operating System: debian

Trait:

{  "fixed": "2.4.17-2.1"}

Source: debian

Type: Configuration

Product: openldap2.3

Operating System: ubuntu hardy 8.04

Trait:

{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: openldap2.3

Operating System: debian

Trait:

{  "unfixed": true}

Source: debian

Type: Configuration

Vendor: *

Product: fedora

Operating System: * * *

Trait:

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:*",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

Type: Configuration

Vendor: *

Product: mac_os_x

Operating System: * * *

Trait:

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",      "versionEndExcluding": "10.6.2",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

Type: Configuration

Vendor: *

Product: openldap

Operating System: * * *

Trait:

{  "children": [    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:openldap:openldap:*:*:*:*:*:*:*:*",          "versionEndExcluding": "2.4.18",          "vulnerable": true    ...

{  "children": [    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:openldap:openldap:*:*:*:*:*:*:*:*",          "versionEndExcluding": "2.4.18",          "vulnerable": true        }      ],      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*"        }      ],      "operator": "OR"    }  ],  "operator": "AND"}

Source: nvd

End of list

Russian Vulnerability Scanner Database

CVE-2009-3767

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

CWEs

Related Vulnerabilities

Exploits

Vulnerable Software (8)