Computer Security
[EN] securityvulns.ru no-pyccku


stunnel protection bypass
Published:08.08.2008
Source:
SecurityVulns ID:9208
Type:remote
Threat Level:
4/10
Description:Revoked certificate status is incorrectly checked.
Affected:STUNNEL : stunnel 4.23
CVE:CVE-2008-2420 (The OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), which allows remote attackers to bypass intended access restrictions by using revoked certificates.)
Original documentdocumentGENTOO, [ GLSA 200808-08 ] stunnel: Security bypass (08.08.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod