Perl IO::Socket::SSL 'verify_hostname_of_cert()' Security Bypass Vulnerability

Bugtraq ID: 35587
Class: Design Error
CVE: CVE-2009-3024
Remote: Yes
Local: No
Published: Jul 03 2009 12:00AM
Updated: Apr 13 2015 09:35PM
Credit: Marc Lehmann
Vulnerable: SuSE SUSE Linux Enterprise 11
S.u.S.E. openSUSE 11.1
Pardus Linux 2009 0
Pardus Linux 2008 0
Mandriva Linux Mandrake 2009.0 x86_64
Mandriva Linux Mandrake 2009.0
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Gentoo Linux
CPAN IO::Socket::SSL 1.25
Not Vulnerable: CPAN IO::Socket::SSL 1.26


 

Privacy Statement
Copyright 2010, SecurityFocus