Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

OpenSSLOPENSSL:CVE-2009-3555

HistoryNov 05, 2009 - 12:00 a.m.

Vulnerability in OpenSSL CVE-2009-3555

Vulners
Openssl
Vulnerability in OpenSSL CVE-2009-3555

2009-11-0500:00:00

www.openssl.org

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.4%

JSON

Implement RFC5746 to address vulnerabilities in SSL/TLS renegotiation.

Fixed in OpenSSL 0.9.8m (Affected since 0.9.8)

oraclelinux 2

nessus 65

openvas 63

hackerone 2

centos 2

seebug 4

ubuntu 5

debian 6

fedora 10

cisco 2

altlinux 4

nvd 1

slackware 1

f5 2

redhat 3

cert 1

packetstorm 1

ubuntucve 1

debiancve 1

securityvulns 7

freebsd_advisory 1

prion 1

osv 1

checkpoint_advisories 3

exploitpack 1

fortinet 1

veracode 1

cvelist 1

cve 1

suse 1

mozilla 1

nginx 1

ibm 1

github 1

oraclelinux

openssl097a security update

2010-03-25 00:00:00

nss security update

2010-03-25 00:00:00

nessus

Ubuntu 9.04 : nss vulnerability (USN-927-6)

2010-07-26 00:00:00

Fedora 12 : nss-3.12.6-1.2.fc12 (2010-3956)

2010-07-01 00:00:00

Oracle Linux 4 / 5 : nss (ELSA-2010-0165)

2013-07-12 00:00:00

openvas

Fedora Update for gnutls FEDORA-2010-9518

2010-06-25 00:00:00

Mandriva Update for mandriva-release MDVA-2010:069 (mandriva-release)

2010-02-19 00:00:00

Ubuntu Update for nspr update USN-927-5

2010-07-02 00:00:00

hackerone

Slack: TLS1/SSLv3 Renegotiation Vulnerability

2014-04-02 13:01:00

LocalTapiola: Secure Client-Initiated Renegotiation

2017-12-27 15:57:52

centos

nspr, nss security update

2010-03-28 15:36:50

openssl097a security update

2010-03-27 17:44:36

seebug

TLS Renegotiation Vulnerability PoC Exploit

2009-12-21 00:00:00

Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability

2009-11-10 00:00:00

ProFTPD TLS会话重协商明文数据注入漏洞

2009-12-15 00:00:00

ubuntu

NSS vulnerability

2010-04-09 00:00:00

NSS vulnerability

2010-07-23 00:00:00

nss vulnerability

2010-06-29 00:00:00

debian

[SECURITY] [DSA-2141-2] New nss packages fix protocol design flaw

2011-01-05 23:20:31

[SECURITY] [DSA-2141-4] New lighttpd packages fix regression

2011-01-12 18:51:18

[SECURITY] [DSA-2141-1] New apache2 packages add backward compatibility option

2011-01-05 23:21:00

fedora

[SECURITY] Fedora 12 Update: tomcat-native-1.1.18-1.fc12

2009-12-18 04:35:37

[SECURITY] Fedora 12 Update: proftpd-1.3.2c-1.fc12

2009-12-27 20:24:34

[SECURITY] Fedora 11 Update: nss-3.12.6-1.2.fc11

2010-03-23 02:03:18

cisco

Transport Layer Security Renegotiation Vulnerability

2009-11-09 13:00:00

Transport Layer Security Renegotiation Remote Man-in-the-Middle Attack Vulnerability

2009-11-05 19:53:52

altlinux

Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8l-alt1

2009-11-07 00:00:00

Security fix for the ALT Linux 6 package openssl10 version 0.9.8l-alt1

2009-11-07 00:00:00

Security fix for the ALT Linux 9 package openssl10 version 0.9.8l-alt1

2009-11-07 00:00:00

nvd

CVE-2009-3555

2009-11-09 17:30:00

slackware

openssl

2009-11-16 13:42:36

SOL10737 - SSL Renegotiation vulnerability - CVE-2009-3555 / VU#120541

2009-11-05 00:00:00

K10737 : SSL Renegotiation vulnerability - CVE-2009-3555 / VU#120541

2013-07-05 00:00:00

redhat

(RHSA-2010:0165) Moderate: nss security update

2010-03-25 00:00:00

(RHSA-2010:0155) Moderate: java-1.4.2-ibm security and bug fix update

2010-03-17 00:00:00

(RHSA-2010:0164) Moderate: openssl097a security update

2010-03-25 00:00:00

cert

SSL and TLS protocols renegotiation vulnerability

2009-11-11 00:00:00

packetstorm

TLS Renegotiation Exploit

2009-12-21 00:00:00

ubuntucve

CVE-2009-3555

2009-11-09 00:00:00

debiancve

CVE-2009-3555

2009-11-09 17:30:00

securityvulns

Aruba Advisory ID: AID-020810 TLS Protocol Session Renegotiation Security Vulnerability

2010-02-10 00:00:00

SSL data injection

2010-02-10 00:00:00

[ MDVSA-2009:295 ] apache

2009-11-09 00:00:00

freebsd_advisory

FreeBSD-SA-09:15.ssl

2009-12-03 00:00:00

prion

Cross site request forgery (csrf)

2009-11-09 17:30:00

osv

Apache Tomcat affected by vulnerability in TLS and SSL protocol

2022-05-02 03:46:22

checkpoint_advisories

TLS Renegotiation (CVE-2009-3555)

2009-11-22 00:00:00

TLS Client Initiated Renegotiation (CVE-2009-3555)

2009-11-23 00:00:00

Preemptive Protection against TLS and SSL Spoofing Vulnerability

2010-02-09 00:00:00

exploitpack

TLS - Renegotiation

2009-12-21 00:00:00

fortinet

FortiOS SSL Deep-Inspection possible Insecure Renegotiation

2017-11-03 00:00:00

veracode

Man-in-the-Middle (MitM)

2020-04-10 00:36:56

cvelist

CVE-2009-3555

2009-11-09 17:00:00

cve

CVE-2009-3555

2009-11-09 17:30:00

suse

man-in-the-middle attack in openssl

2009-11-18 09:50:39

mozilla

Update NSS to support TLS renegotiation indication — Mozilla

2010-03-30 00:00:00

nginx

The renegotiation vulnerability in SSL protocol

2009-11-09 17:30:00

ibm

Security Bulletin: Multiple vulnerabilities have been identified in IBM Tivoli Netcool/OMNIbus Probe for Network Node Manager i (CVE-2009-3555)

2020-06-23 08:41:14

github

Apache Tomcat affected by vulnerability in TLS and SSL protocol

2022-05-02 03:46:22

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.4%

JSON

Related for OPENSSL:CVE-2009-3555