CVE-2009-3766

mutt_ssl.c in mutt 1.5.16 and other versions before 1.5.19, when OpenSSL is used, does not verify the domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://dev.mutt.org/trac/ticket/3087	Patch Vendor Advisory
http://marc.info/?l=oss-security&m=125198917018936&w=2	Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/10/26/1	Mailing List Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:mutt:mutt:*:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-10-23 19:30

Updated : 2019-11-07 15:35

NVD link : CVE-2009-3766

Mitre link : CVE-2009-3766

CVE.ORG link : CVE-2009-3766

JSON object : View

Products Affected

openssl

openssl

mutt

mutt

CWE

CWE-310

Cryptographic Issues

{"id": "CVE-2009-3766", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-10-23T19:30:00.233", "references": [{"url": "http://dev.mutt.org/trac/ticket/3087", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=oss-security&m=125198917018936&w=2", "tags": ["Mailing List", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2009/10/26/1", "tags": ["Mailing List", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-310"}]}], "descriptions": [{"lang": "en", "value": "mutt_ssl.c in mutt 1.5.16 and other versions before 1.5.19, when OpenSSL is used, does not verify the domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate."}, {"lang": "es", "value": "En el archivo mutt_ssl.c en mutt versi\u00f3n 1.5.16 y otras versiones anteriores a 1.5.19, cuando es usado OpenSSL, no comprueba el nombre de dominio en el campo Common Name (CN) de un certificado X.509, que permite a los atacantes de tipo man-in-the-middle falsificar servidores SSL por medio de un certificado v\u00e1lido arbitrario."}], "lastModified": "2019-11-07T15:35:43.737", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mutt:mutt:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A318134-FDFF-4D07-9DCD-7C7F04148552", "versionEndExcluding": "1.5.19", "versionStartIncluding": "1.5.16"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DDA1CA86-1405-4C25-9BC2-5A5E6A76B911"}], "operator": "OR"}], "operator": "AND"}], "vendorComments": [{"comment": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2009-3766\n\nThe Red Hat Security Response Team has rated this issue as having moderate security impact, a future update may address this flaw.", "lastModified": "2009-11-26T00:00:00", "organization": "Red Hat"}], "sourceIdentifier": "cve@mitre.org"}