Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.806104
Category:Web application abuses
Title:Squid SSL-Bump Certificate Validation Bypass Vulnerability
Summary:This host is running Squid and is prone; to certificate validation bypass vulnerability.
Description:Summary:
This host is running Squid and is prone
to certificate validation bypass vulnerability.

Vulnerability Insight:
The client-first SSL-bump feature does not
properly validate X.509 server certificate domain and hostname fields. A remote
server can create a specially crafted certificate to bypass client certificate
validation.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to bypass client certificate validation.

Affected Software/OS:
Squid 3.2 -> 3.2.13
Squid 3.3 -> 3.3.13
Squid 3.4 -> 3.4.12
Squid 3.5 -> 3.5.3

Solution:
Apply the patch or upgrade to version
Squid 3.5.4, 3.4.13, 3.3.14, 3.2.14 or later.

CVSS Score:
2.6

CVSS Vector:
AV:N/AC:H/Au:N/C:N/I:P/A:N

Cross-Ref: BugTraq ID: 74438
Common Vulnerability Exposure (CVE) ID: CVE-2015-3455
http://www.securityfocus.com/bid/74438
http://lists.fedoraproject.org/pipermail/package-announce/2016-May/183598.html
http://www.mandriva.com/security/advisories?name=MDVSA-2015:230
RedHat Security Advisories: RHSA-2015:2378
http://rhn.redhat.com/errata/RHSA-2015-2378.html
http://www.securitytracker.com/id/1032221
SuSE Security Announcement: openSUSE-SU-2015:1546 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-09/msg00016.html
SuSE Security Announcement: openSUSE-SU-2016:2081 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-08/msg00069.html
CopyrightCopyright (C) 2015 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2022 E-Soft Inc. All rights reserved.