Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0555

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0555
Last Modified 29 Oct 2012 11:06:26
Published 03 Apr 2008 08:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0555

Summary

The ExpandCert function in Apache-SSL before apache_1.3.41+ssl_1.59 does not properly handle (1) '/' and (2) '=' characters in a Distinguished Name (DN) in a client certificate, which might allow remote attackers to bypass authentication via a crafted DN that triggers overwriting of environment variables.

Vulnerable Systems

Application

  • Apache-ssl 1.3.34 1.57


References

BID - 28576

VUPEN - ADV-2008-1079

SECTRACK - 1019784

BUGTRAQ - 20080402 ANNOUNCE: Apache-SSL security release - apache_1.3.41+ssl_1.59

MISC - http://www.klink.name/security/aklink-sa-2008-005-apache-ssl.txt

MISC - http://www.cynops.de/advisories/CVE-2008-0555.txt

MISC - http://www.apache-ssl.org/advisory-cve-2008-0555.txt

SREASON - 3797

SECUNIA - 29644

XF - apachessl-expandcert-information-disclosure(41618)


Last Updated: 27 May 2016 11:01:18