yaSSL Unspecified Certificate Chain Processing Issue

2005-11-14T04:19:16
ID OSVDB:20831
Type osvdb
Reporter OSVDB
Modified 2005-11-14T04:19:16

Description

Vulnerability Description

yaSSL contains a flaw related to Certificate Chain Processing that may allow an attacker to bypass certain restrictions. No further details have been provided.

Solution Description

Upgrade to version 1.0.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

yaSSL contains a flaw related to Certificate Chain Processing that may allow an attacker to bypass certain restrictions. No further details have been provided.

References:

Vendor URL: http://www.yassl.com Vendor Specific News/Changelog Entry: http://yassl.com/release.html Secunia Advisory ID:17619 Mail List Post: http://archives.neohapsis.com/archives/apps/freshmeat/2005-11/0014.html CVE-2005-3731 Bugtraq ID: 15487