CVE-2009-0051

{"id": "CVE-2009-0051", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-01-07T18:30:15.890", "references": [{"url": "http://www.ocert.org/advisories/ocert-2008-016.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/499827/100/0/threaded", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47837", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077."}, {"lang": "es", "value": "ZXID versi\u00f3n 0.29 y anteriores, no comprueba apropiadamente el valor devuelto de la funci\u00f3n DSA_verify de OpenSSL, que permite a los atacantes remotos omitir la comprobaci\u00f3n de la cadena de certificados por medio de una firma de SSL/TLS malformada, una vulnerabilidad similar a CVE-2008-5077."}], "lastModified": "2018-10-11T20:59:48.983", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:zxid:zxid:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FBF13B6-C08F-4B37-852A-CFA68C2493FE", "versionEndIncluding": "0.29"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BEB522C-2349-4297-AF71-2263968BAEB8"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25720EAB-8656-45CB-983F-458782A44B6D"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "764ACFF4-BFD6-4FFE-81F3-30092E4023D0"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F8198CC-A1C6-49CB-B473-6C5CEF92BB05"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20660655-9FD4-4264-A689-4D722B16661D"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E75A1370-596D-45A2-A4E2-218717498F69"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "255CCFCC-98B5-466F-9463-0E386C5B8FF9"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3821FD3-3F2B-43F3-A089-94EE7F60BCFB"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83DF2771-1B0E-4AB4-8F1C-32D6365B7A59"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00C538E3-BF56-41A8-BD71-6988CF935505"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47A7E3CA-8AC2-4382-8D77-325B1B12418C"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "850DE94C-34DF-4C46-8383-2A544B71C5A9"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9D00FA7-822A-4743-84C2-7FA4F120F865"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6AAC7BD0-7771-4511-BC69-7A9EB43A8139"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14410832-E77B-4644-B561-B1158DD3BE22"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "037D3B59-2688-4A4E-A328-426B12F97684"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6A0E88B-09C6-4533-9409-9498E170C10E"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6CAB4BF-2D00-461A-B906-547560CFA965"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "133EDD59-49D9-4FDC-8833-420F3E6B8211"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11DD6C71-8661-44B4-98B9-71E5181D999D"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2596C783-B061-45A1-9C75-4A02FDF5D004"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2590DB77-E5C0-4C5A-B1B3-6488F2EEC8E9"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA74ED53-DF05-46A6-9B76-80A9BB40CC57"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C90A5D7D-A08B-46BF-A9A8-18EEADE63284"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70E439D0-A0A9-417F-9DC4-C02BC52589C5"}, {"criteria": "cpe:2.3:a:zxid:zxid:0.28:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39FD0D74-FC99-4E2A-BF8B-59B0A485575D"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}