Lucene search
PRIOn knowledge basePRION:CVE-2009-3456HistorySep 29, 2009 - 6:00 p.m.
Design/Logic Flaw
2009-09-2918:00:00
PRIOn knowledge base
www.prio-n.com
4
Google Chrome, possibly 3.0.195.21 and earlier, does not properly handle a ‘\0’ character in a domain name in the subject’s Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| chrome | eq | 2.0.172.8 | |
| chrome | eq | 0.3.154.3 | |
| chrome | eq | 3.0.182.2 | |
| chrome | eq | 0.2.149.30 | |
| chrome | eq | 0.4.154.31 | |
| chrome | eq | 1.0.154.39 | |
| chrome | eq | 2.0.172.38 | |
| chrome | eq | 1.0.154.59 | |
| chrome | eq | 0.2.149.27 | |
| chrome | eq | 1.0.154.53 |
References
Related
cve
cve
nvd
nvd
debiancve
debiancve
cvelist
cvelist
openvas
openvas
Google Chrome CA SSL Certificate Security Bypass Vulnerability (Oct 2009)
2009-10-06 00:00:00
SLES11: Security update for mutt
2009-10-11 00:00:00
SLES11: Security update for mutt
2009-10-11 00:00:00
nessus
nessus
SuSE 10 Security Update : OpenLDAP 2 (ZYPP Patch Number 6598)
2010-10-11 00:00:00
SuSE9 Security Update : mutt (YOU Patch Number 12505)
2009-09-24 00:00:00
SuSE 10 Security Update : OpenLDAP2 (ZYPP Patch Number 6485)
2009-09-24 00:00:00
threatpost
threatpost
Apple Safari
2009-12-29 21:50:26
veracode
veracode
Man-in-the-Middle (MitM)
2020-04-10 00:33:40
seebug
seebug
Mozilla Firefox NULL字符CA SSL证书验证安全绕过漏洞
2009-07-31 00:00:00
mozilla-thunderbird多个安全漏洞
2009-10-10 00:00:00
ubuntucve
ubuntucve
exploitdb
exploitdb
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2009-42
2009-08-07 00:00:00
fetchmail security announcement fetchmail-SA-2009-01 (CVE-2009-2666)
2009-08-08 00:00:00
[ MDVSA-2013:221 ] php
2013-08-28 00:00:00
mozilla
mozilla
Compromise of SSL-protected communication — Mozilla
2009-08-01 00:00:00
prion
prion
Code injection
2009-07-30 19:30:00
Design/Logic Flaw
2013-08-18 02:52:00
Design/Logic Flaw
2009-10-23 19:30:00
f5
f5
K15683 : Ruby vulnerability CVE-2013-4073
2014-10-09 00:00:00
SOL14909 - OpenSSL vulnerability CVE-2013-4248
2014-01-15 00:00:00
K15638 : Python vulnerability CVE-2013-4238
2014-10-17 00:00:00
debian
debian
[Backports-security-announce] Security Update for proftpd-dfsg
2010-01-26 21:06:44
[Backports-security-announce] Security Update for proftpd-dfsg
2010-01-26 21:30:08
aix
aix
Vulnerability in Diffie-Hellman ciphers affects sendmail on VIOS
2010-03-29 15:54:57
amazon
amazon
Medium: python27
2013-09-04 13:31:00
talos
talos
Randombit Botan Library X509 Certificate Validation Bypass Vulnerability
2017-04-28 00:00:00