Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.1 views

SUSE CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS7.7AI score0.03218EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2009/01/26 12:0 a.m.4 views

PT-2009-2933 · Isc · Bind

Internet Systems Consortium ISC BIND 9.6.0 and earlier does not properly check the return value from the OpenSSL EVP VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077 and...

7.5CVSS7.7AI score0.0686EPSS
Exploits1References7
Prion
Prion
added 2009/01/07 5:30 p.m.27 views

Input validation

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS6.5AI score0.05146EPSS
Exploits1References19Affected Software1
OSV
OSV
added 2009/01/07 5:30 p.m.2 views

DEBIAN-CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS9.3AI score0.03218EPSS
Exploits0References1
Rows per page
Query Builder