1 results (0.009 seconds)

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 3

The ExpandCert function in Apache-SSL before apache_1.3.41+ssl_1.59 does not properly handle (1) '/' and (2) '=' characters in a Distinguished Name (DN) in a client certificate, which might allow remote attackers to bypass authentication via a crafted DN that triggers overwriting of environment variables. La función ExpandCert en Apache-SSL versiones anteriores apache_1.3.41+ssl_1.59 no gestiona correctamente los caracteres (1) '/' y (2) '=' en un Distinguished Name (DN) de un certificado de cliente, lo cual puede permitir a atacantes remotos evitar autenticarse a través de un DN manipulado que dispara la sobreescritura de variables de entorno. • http://secunia.com/advisories/29644 http://securityreason.com/securityalert/3797 http://www.apache-ssl.org/advisory-cve-2008-0555.txt http://www.cynops.de/advisories/CVE-2008-0555.txt http://www.klink.name/security/aklink-sa-2008-005-apache-ssl.txt http://www.securityfocus.com/archive/1/490386/100/0/threaded http://www.securityfocus.com/bid/28576 http://www.securitytracker.com/id?1019784 http://www.vupen.com/english/advisories/2008/1079/references https://exchange.xforce.i • CWE-20: Improper Input Validation CWE-287: Improper Authentication •