[VU:120541] SSL and TLS protocols renegotiation vulnerability

Severity Medium

CVEs 1

Overview

A vulnerability exists in SSL and TLS protocols that may allow attackers to execute an arbitrary HTTP transaction.

Impact

A remote, unauthenticated attacker may be able to inject an arbitrary amount of chosen plaintext into the beginning of the application protocol stream. This could allow and attacker to issue HTTP requests, or take action impersonating the user, among other consequences.

Solution

Users should contact vendors for specific patch information.

Acknowledgements

Thanks to Marsh Ray of PhoneFactor for reporting this vulnerability. This issue was also independently discovered and publicly disclosed by Martin Rex of SAP.

ID

VU:120541

Severity

medium

Severity from

CVE-2009-3555

URL

https://kb.cert.org/vuls/id/120541

Published

2009-11-11T19:42:20
(15 years ago)

Modified

2011-07-22T12:47:20
(13 years ago)

Rights

Other Advisories

Source	# ID	Name	URL
			http://extendedsubset.com/?p=8
			http://www.links.org/?p=780
			http://www.links.org/?p=786
			http://www.links.org/?p=789
			http://blogs.iss.net/archive/sslmitmiscsrf.html
			http://www.ietf.org/mail-archive/web/tls/current/msg03948.html
			https://bugzilla.redhat.com/show_bug.cgi?id=533125
			http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00014.html
			http://cvs.openssl.org/chngview?cn=18790
			http://www.links.org/files/no-renegotiation-2.patch
			http://blog.zoller.lu/2009/11/new-sslv3-tls-vulnerability-mitm.html
			https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
			http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date