CVE-2002-0970
published 2002-09-24CVE-2002-0970: The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote…
PriorityP424high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.84%
84.9th percentile
The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssl | < openssl 0.9.8-1 (bookworm) | openssl 0.9.8-1 (bookworm) |
| kde | kde | — | — |
| kde | kde | — | — |
| kde | kde | — | — |
| kde | kde | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| openssl | openssl | — | — |
| openssl | openssl | >= 0 < 0.9.8-1 | 0.9.8-1 |
| openssl | openssl | >= 0 < 0.9.8-1 | 0.9.8-1 |
| openssl | openssl | >= 0 < 0.9.8-1 | 0.9.8-1 |
| openssl | openssl | >= 0 < 0.9.8-1 | 0.9.8-1 |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2009-0653: openssl - OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermedia...
vendor_debian·2009·CVSS 7.5
CVE-2009-0653 [HIGH] CVE-2009-0653: openssl - OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermedia...
OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970.
Scope: local
bookworm: resolved (fixed in 0.9.8-1)
bullseye: resolved (fixed in 0.9.8-1)
forky: resolved (fixed in 0.9.8-1)
sid: resolved (fixed in 0.9.8-1)
trixie: resolved (fixed in 0.9.8-1)
Red Hat
security flaw
vendor_redhat·2002-08-12·CVSS 7.5
CVE-2002-0970 [HIGH] security flaw
security flaw
The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack.
Red Hat
CVE-2009-0653: OpenSSL, probably 0
vendor_redhat·CVSS 7.5
CVE-2009-0653 [HIGH] CVE-2009-0653: OpenSSL, probably 0
OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970.
Statement: Not vulnerable. This issue was addressed in upstream OpenSSL prior to 0.9.6 and therefore does not affect the versions of OpenSSL as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5.
GHSA
GHSA-x288-6jm2-5j5c: The SSL capability for Konqueror in KDE 3
ghsa_unreviewed·2022-05-03
CVE-2002-0970 [HIGH] GHSA-x288-6jm2-5j5c: The SSL capability for Konqueror in KDE 3
The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack.
GHSA
GHSA-gj63-3383-h48m: OpenSSL, probably 0
ghsa_unreviewed·2022-05-02·CVSS 7.5
CVE-2009-0653 [HIGH] CWE-287 GHSA-gj63-3383-h48m: OpenSSL, probably 0
OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970.
OSV
CVE-2009-0653: OpenSSL, probably 0
osv·2009-02-20·CVSS 7.5
CVE-2009-0653 [HIGH] CVE-2009-0653: OpenSSL, probably 0
OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2002-0970 security flaw
bugzilla·2018-08-16·CVSS 7.5
CVE-2002-0970 [HIGH] CVE-2002-0970 security flaw
CVE-2002-0970 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack.
Bugzilla
CVE-2008-1676 Certificate System: incorrect handling of Extensions in CSRs (cs71)
bugzilla·2008-05-05·CVSS 6.8
CVE-2008-1676 [MEDIUM] CVE-2008-1676 Certificate System: incorrect handling of Extensions in CSRs (cs71)
CVE-2008-1676 Certificate System: incorrect handling of Extensions in CSRs (cs71)
A flaw was found in a way Red Hat Certificate System handled Extensions in the
certificate signing requests (CSR). All requested Extensions were added to
issued certificate despite constraints defined in Certificate Authority (CA)
profile.
For example, CSR could contain Basic Constraints or Key Usage constraint that
once copied to issued certificate would result in creation of subordinate CA
certificate, even though CA configuration prohibits issuing of subordinate CA
certificate, possibly leading to a bypass the intended security policy.
Affected versions:
Red Hat Certificate System 7.1, 7.2, 7.3
Netscape Certificate Management System 6.x
Discussion:
It's hard to code this correctly in CVSS v2. I think
CWE
Improper Following of a Certificate's Chain of Trust
mitre_cwe
CWE-296 Improper Following of a Certificate's Chain of Trust
CWE-296: Improper Following of a Certificate's Chain of Trust
The product does not follow, or incorrectly follows, the chain of trust for a certificate back to a trusted root certificate, resulting in incorrect trust of any resource that is associated with that certificate.
If a system does not follow the chain of trust of a certificate to a root server, the certificate loses all usefulness as a metric of trust. Essentially, the trust gained from a certificate is derived from a chain of trust -- with a reputable trusted entity at the end of that list. The end user must trust that reputable source, and this reputable source must vouch for the resource in question through the medium of the certificate. In some cases, this trust traverses several entities who vouch for one another. The enti
CWE
Improperly Implemented Security Check for Standard
mitre_cwe·CVSS 6.8
[MEDIUM] CWE-358 Improperly Implemented Security Check for Standard
CWE-358: Improperly Implemented Security Check for Standard
The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.
Modes of Introduction:
Phase: Architecture and Design
Phase: Implementation
Note: This is an implementation error, in which the algorithm/technique requires certain security-related behaviors or conditions that are not implemented or checked properly, thus causing a vulnerability.
Common Consequences:
Scope: Access Control. Impact: Bypass Protection Mechanism.
Observed Examples:
CVE-2002-0862: Browser does not verify Basic Constraints of a certificate, even though it is required, allowing spoofing of trusted certificates.
CVE-2002-0970: Browser does not ve
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-047.0.txthttp://archives.neohapsis.com/archives/bugtraq/2002-08/0170.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000519http://marc.info/?l=bugtraq&m=102918241005893&w=2http://www.debian.org/security/2002/dsa-155http://www.kde.org/info/security/advisory-20020818-1.txthttp://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:058http://www.redhat.com/support/errata/RHSA-2002-220.htmlhttp://www.redhat.com/support/errata/RHSA-2002-221.htmlhttp://www.securityfocus.com/bid/5410https://exchange.xforce.ibmcloud.com/vulnerabilities/9776ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-047.0.txthttp://archives.neohapsis.com/archives/bugtraq/2002-08/0170.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000519http://marc.info/?l=bugtraq&m=102918241005893&w=2http://www.debian.org/security/2002/dsa-155http://www.kde.org/info/security/advisory-20020818-1.txthttp://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:058http://www.redhat.com/support/errata/RHSA-2002-220.htmlhttp://www.redhat.com/support/errata/RHSA-2002-221.htmlhttp://www.securityfocus.com/bid/5410https://exchange.xforce.ibmcloud.com/vulnerabilities/9776
2002-09-24
Published