Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4197

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-4197
Last Modified 03 Jan 2012 12:00:00
Published 03 Jan 2012 02:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4197

Summary

etc/inc/certs.inc in the PKI implementation in pfSense before 2.0.1 creates each X.509 certificate with a true value for the CA basic constraint, which allows remote attackers to create sub-certificates for arbitrary subjects by leveraging the private key.

Vulnerable Systems

Application

  • Pfsense 1.0.x

  • Pfsense 1.2.1

  • Pfsense 1.2.2

  • Pfsense 1.2.3

  • Pfsense 2.0


References

MISC - https://www.trustmatta.com/advisories/MATTA-2011-001.txt

CONFIRM - https://github.com/bsdperimeter/pfsense/commit/87b4deb2b2dae9013e6aa0fe490d6a5a04a27894

CONFIRM - https://github.com/bsdperimeter/pfsense/commit/1379d66f11aaf72982a70287b83e24efcd18898e

XF - pfsense-x509-security-bypass(71969)

BID - 51169

OSVDB - 77982

SECUNIA - 46780

BUGTRAQ - 20111222 [MATTA-2011-001] pfSense x509 Insecure Certificate Creation


Last Updated: 27 May 2016 10:57:59