2 matches found
CVE-2009-0653
OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970...
CVE-2009-0653
OpenSSL CA Basic Constraints Validation Vulnerability (CVE-2009-0653). What is affected: OpenSSL, probably the 0.9.6 series. The issue concerns failure to verify the Basic Constraints for an intermediate CA‑signed certificate. Root cause: Basic constraints are not validated for some CA certificat...