Lucene search
CVE-2008-2420
🗓️ 23 May 2008 15:00:32Reported by Debian Security Bug TrackerType 
debiancve🔗 security-tracker.debian.org👁 14 Views
The OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), enabling remote attackers to bypass access restrictions with revoked certificates
Show more
| Reporter | Title | Published | Views | Family All 27 |
|---|---|---|---|---|
 | stunnel: Security bypass | 8 Aug 200800:00 | – | gentoo |
 | Gentoo Security Advisory GLSA 200808-08 (stunnel) | 24 Sep 200800:00 | – | openvas |
| Fedora Update for stunnel FEDORA-2008-4531 | 17 Feb 200900:00 | – | openvas |
| Fedora Update for stunnel FEDORA-2008-4579 | 17 Feb 200900:00 | – | openvas |
| Fedora Update for stunnel FEDORA-2008-4606 | 17 Feb 200900:00 | – | openvas |
| Mandriva Update for stunnel MDVSA-2008:168 (stunnel) | 9 Apr 200900:00 | – | openvas |
| Fedora Update for stunnel FEDORA-2008-4606 | 17 Feb 200900:00 | – | openvas |
| Mandriva Update for stunnel MDVSA-2008:168 (stunnel) | 9 Apr 200900:00 | – | openvas |
| Fedora Update for stunnel FEDORA-2008-4531 | 17 Feb 200900:00 | – | openvas |
| Fedora Update for stunnel FEDORA-2008-4579 | 17 Feb 200900:00 | – | openvas |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | stunnel4 | 3:4.22-1.1 | stunnel4_3:4.22-1.1_all.deb |
| Debian | 11 | all | stunnel4 | 3:4.22-1.1 | stunnel4_3:4.22-1.1_all.deb |
| Debian | 999 | all | stunnel4 | 3:4.22-1.1 | stunnel4_3:4.22-1.1_all.deb |
| Debian | 13 | all | stunnel4 | 3:4.22-1.1 | stunnel4_3:4.22-1.1_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo23 May 2008 15:32Current
5.7Medium risk
Vulners AI Score5.7
CVSS26.8
EPSS0.00488