Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> OpenCA multiple signature validation bypass


Vulnerability Assessment Details

OpenCA multiple signature validation bypass

Vulnerability Assessment Summary
Checks for the version of OpenCA

Detailed Explanation for this Vulnerability Assessment

The remote host seems to be running an older version of OpenCA.

It is reported that OpenCA versions up to and incluing 0.9.1.3 contains
multiple flaws that may permit revoked or expired certificates to be accepted as valid.


Solution : Upgrade to the newest version of this software
Risk Factor : Medium

Networks Security ID: 9123

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 David Maciejak

Cables, Connectors

Samsung MZ-7PD128 840 Pro 128GB 2.5" SATA III (6.0Gb/s) Solid State Drive
$39.99
Samsung  MZ-7PD128 840 Pro 128GB 2.5Samsung ML-1710D3 Toner Cartridge
$50.0
Samsung ML-1710D3 Toner Cartridge pictureSamsung SyncMaster 226BW 22" 1680 x 1050 DVI VGA LCD Monitor
$44.99
Samsung SyncMaster 226BW 22x1 New Samsung LTN156AT28 LCD Laptop Screen Monitor 15.6 HD OGC4HY FreeShip
$69.99
x1 New Samsung LTN156AT28 LCD Laptop Screen Monitor 15.6 HD OGC4HY FreeShip picture


Discussions

No Discussions have been posted on this vulnerability.