CVE-2015-3644

Stunnel 5.00 through 5.13, when using the redirect option, does not redirect client connections to the expected server after the initial connection, which allows remote attackers to bypass authentication.

CVSS v2.0 5.8 MEDIUM

5.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:N

Exploitability : 8.6 / Impact : 4.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.debian.org/security/2015/dsa-3299
http://www.securityfocus.com/bid/74659
http://www.securitytracker.com/id/1032324
https://www.stunnel.org/CVE-2015-3644.html	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:stunnel:stunnel:5.00:::::::*
	cpe:2.3:a:stunnel:stunnel:5.01:::::::*
	cpe:2.3:a:stunnel:stunnel:5.02:::::::*
	cpe:2.3:a:stunnel:stunnel:5.03:::::::*
	cpe:2.3:a:stunnel:stunnel:5.04:::::::*
	cpe:2.3:a:stunnel:stunnel:5.05:::::::*
	cpe:2.3:a:stunnel:stunnel:5.06:::::::*
	cpe:2.3:a:stunnel:stunnel:5.07:::::::*
	cpe:2.3:a:stunnel:stunnel:5.08:::::::*
	cpe:2.3:a:stunnel:stunnel:5.09:::::::*
	cpe:2.3:a:stunnel:stunnel:5.10:::::::*
	cpe:2.3:a:stunnel:stunnel:5.11:::::::*
	cpe:2.3:a:stunnel:stunnel:5.12:::::::*
	cpe:2.3:a:stunnel:stunnel:5.13:::::::*

History

No history.

Information

Published : 2015-05-14 00:59

Updated : 2023-12-10 11:46

NVD link : CVE-2015-3644

Mitre link : CVE-2015-3644

CVE.ORG link : CVE-2015-3644

JSON object : View

Products Affected

stunnel

stunnel

CWE

CWE-284

Improper Access Control

{"id": "CVE-2015-3644", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-05-14T00:59:06.147", "references": [{"url": "http://www.debian.org/security/2015/dsa-3299", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/74659", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1032324", "source": "cve@mitre.org"}, {"url": "https://www.stunnel.org/CVE-2015-3644.html", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "Stunnel 5.00 through 5.13, when using the redirect option, does not redirect client connections to the expected server after the initial connection, which allows remote attackers to bypass authentication."}, {"lang": "es", "value": "Stunnel 5.00 hasta 5.13, cuando utiliza la opci\u00f3n de redirecci\u00f3n, no redirige las conexiones de clientes al servidor esperado despu\u00e9s de la conexi\u00f3n inicial, lo que permite a atacantes remotos evadir la autenticaci\u00f3n."}], "lastModified": "2016-12-28T02:59:14.043", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:stunnel:stunnel:5.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86A9A9F5-B193-44DC-88EF-D0409AB2CD42"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AD482D3-F96B-41EB-BEF2-ED59A2B2E77B"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79CCAF8F-FAB6-40B5-8752-0E5AA6CDC0CD"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59AE589F-7747-4F46-A58F-608AB7110B46"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14F8AE5A-BCBB-4F41-862D-D930CAA67B61"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E881D0A8-5BA1-41FC-9743-262CAB3BCD08"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.06:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5636BFAF-4A5C-4002-B6BB-75B6F6BD534D"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.07:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9B042A1-00CF-40CD-BAA2-1E2FFBE6FEE6"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.08:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26F8ECBC-35ED-4736-9EA3-E439747E4249"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.09:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A40647D-D3F4-4BB8-9A20-66366E330EF4"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D933945A-4FFE-4A90-B5A7-D375E36F5D90"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B9E126F-CC19-4C4D-BB98-D4A21D7B84C0"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60862632-E37E-40D4-8153-FE82CFD0E011"}, {"criteria": "cpe:2.3:a:stunnel:stunnel:5.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2774924-2867-42CF-AFFB-996809126E31"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}