CVE-2009-0051

Published Jan 7, 2009

Last updated 6 years ago

Overview

Description: ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-287

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:zxid:zxid:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FBF13B6-C08F-4B37-852A-CFA68C2493FE",
            "versionEndIncluding": "0.29"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BEB522C-2349-4297-AF71-2263968BAEB8"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25720EAB-8656-45CB-983F-458782A44B6D"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "764ACFF4-BFD6-4FFE-81F3-30092E4023D0"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F8198CC-A1C6-49CB-B473-6C5CEF92BB05"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20660655-9FD4-4264-A689-4D722B16661D"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E75A1370-596D-45A2-A4E2-218717498F69"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "255CCFCC-98B5-466F-9463-0E386C5B8FF9"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3821FD3-3F2B-43F3-A089-94EE7F60BCFB"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83DF2771-1B0E-4AB4-8F1C-32D6365B7A59"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00C538E3-BF56-41A8-BD71-6988CF935505"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47A7E3CA-8AC2-4382-8D77-325B1B12418C"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "850DE94C-34DF-4C46-8383-2A544B71C5A9"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9D00FA7-822A-4743-84C2-7FA4F120F865"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AAC7BD0-7771-4511-BC69-7A9EB43A8139"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14410832-E77B-4644-B561-B1158DD3BE22"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "037D3B59-2688-4A4E-A328-426B12F97684"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6A0E88B-09C6-4533-9409-9498E170C10E"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6CAB4BF-2D00-461A-B906-547560CFA965"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "133EDD59-49D9-4FDC-8833-420F3E6B8211"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11DD6C71-8661-44B4-98B9-71E5181D999D"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2596C783-B061-45A1-9C75-4A02FDF5D004"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2590DB77-E5C0-4C5A-B1B3-6488F2EEC8E9"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA74ED53-DF05-46A6-9B76-80A9BB40CC57"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C90A5D7D-A08B-46BF-A9A8-18EEADE63284"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70E439D0-A0A9-417F-9DC4-C02BC52589C5"
          },
          {
            "criteria": "cpe:2.3:a:zxid:zxid:0.28:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39FD0D74-FC99-4E2A-BF8B-59B0A485575D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References