6 matches found
EUVD-2009-0060
Malware in sbrugna...
[oCERT-2008-016] Multiple OpenSSL signature verification API misuses
2008-016 multiple OpenSSL signature verification API misuse Description: Several functions inside the OpenSSL library incorrectly check the result after calling the EVPVerifyFinal function. This bug allows a malformed signature to be treated as a good signature rather than as an error. This issue...
CVE-2009-0051
ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSAverify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077...
Input validation
ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSAverify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077...
CVE-2009-0051
ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSAverify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077...
CVE-2009-0051
Public details for CVE-2009-0051 are not provided in the connected documents. Technical specifics (affected product/version/root cause/impact) are not available here—monitor for updates from vendors and advisories.