CVE-2011-3207

Published Sep 22, 2011

Last updated 11 years ago

Overview

Description: crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-264

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FBD8C92-6138-4274-ACBA-D7D42DAEC5AC"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A2075BD-6102-4B0F-839A-836E9585F43B"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A2FA09E-2BF7-4968-B62D-00DA57F81EA1"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F02E634E-1E3D-4E44-BADA-76F92483A732"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FCC2B07A-49EF-411F-8A4D-89435E22B043"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E9480D6-3B6A-4C41-B8C1-C3F945040772"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10FF0A06-DA61-4250-B083-67E55E362677"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A6BA453-C150-4159-B80B-5465EFF83F11"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "638A2E69-8AB6-4FEA-852A-FEF16A500C1A"
          },
          {
            "criteria": "cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56C47D3A-B99D-401D-B6B8-1194B2DB4809"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References