Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-3555

CWE-295 — Improper Certificate Validation CWE-20 — Improper Input Validation CWE-30023 documents12 sources

Severity

5.8MEDIUM

EPSS

2.3%

top 15.30%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apache Http Server F5 Nginx GNU Gnutls +5 more

Timeline

PublishedNov 9

Latest updateMay 2

Description

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and po…

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages13 packages

▶NVDapache/http_server2.2.14

▶Mavenorg.apache.tomcat:tomcat7.0.0 — 7.0.10+2

▶Debianapache2< 2.2.14-2+3

▶Debianopenssl< 0.9.8k-6+3

▶Debianlighttpd< 1.4.30-1+3

Also affects: Fedora 11, 12, 13, 14, Debian Linux 4.0, 5.0, 6.0, 7.0, 8.0, Ubuntu Linux 10.04, 10.10, 8.04, 8.10, 9.04, 9.10

Patches

Patch: www.securityfocus.com ↗Patch: docs.microsoft.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

OSV

Apache Tomcat affected by vulnerability in TLS and SSL protocol↗2022-05-02

▶

GHSA

Apache Tomcat affected by vulnerability in TLS and SSL protocol↗2022-05-02

▶

CVEList

CVE-2009-3555: The TLS protocol, and the SSL protocol 3↗2009-11-09

▶

OSV

CVE-2009-3555: The TLS protocol, and the SSL protocol 3↗2009-11-09

▶

VulnCheck

Apache HTTP Server Improper Certificate Validation↗2009

▶

💥Exploits & PoCs

Exploit-DB

TLS - Renegotiation↗2009-12-21

▶

Exploit-DB

Mozilla NSS - NULL Character CA SSL Certificate Validation Security Bypass↗2009-11-10

▶

📋Vendor Advisories

Ubuntu

OpenJDK vulnerabilities↗2010-10-28

▶

Ubuntu

OpenSSL vulnerability↗2010-09-21

▶

Ubuntu

Apache vulnerability↗2010-09-21

▶

Ubuntu

NSS vulnerability↗2010-07-23

▶

Ubuntu

nss vulnerability↗2010-06-29

▶

💬Community

Bugzilla

qpid-cpp: SSL Broker vulnerable to RC4 and Secure Client-Initiated Renegotiation (CVE-2009-3555)↗2016-04-13

▶

Bugzilla

CVE-2009-3555 TLS: MITM attacks via session renegotiation↗2009-11-05

▶