CVE-2009-3555
Description
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a plaintext injection attack, aka the Project Mogul issue.
Risk Information
Base Score
7.4
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS Score
Exploitation Probability
1.971
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows XP (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Server 2003 (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Vista (KB980436) x86 based systems | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Vista (KB980436) x86 based systems for SP2 | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Server 2008 (KB980436) x86 based systems | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Server 2008 (KB980436) x86 based systems for SP2 | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows 7 (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows XP x64 Edition (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Server 2003 x64 Edition (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Vista for x64-based Systems (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Vista for x64-based Systems (KB980436) for SP2 | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Server 2008 x64 Edition (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Server 2008 x64 Edition (KB980436) for SP2 | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows 7 for x64-based Systems (KB980436) | Windows |
| ms10-049: vulnerabilities in schannel could allow remote code execution for Windows Server 2008 R2 x64 Edition (KB980436) | Windows |
| Multiple vulnerabilities fixed in OpenSSL (x64) 0.9.8m | Windows |
| Vulnerabilities CVE-2009-3555,CVE-2010-2375 are affected in Oracle WebLogic Server 6.4 | Windows |
| Vulnerabilities CVE-2011-0534,CVE-2010-4476,CVE-2009-3555 are fixed in Apache - tomcat 6.0.32 | Windows |
| Vulnerabilities CVE-2011-1088,CVE-2009-3555 are fixed in Apache - tomcat 7.0.10 | Windows |
| Vulnerabilities CVE-2010-4476,CVE-2009-3555 are fixed in Apache - tomcat 5.5.33 | Windows |
| Vulnerabilities CVE-2009-3555,CVE-2010-0181,CVE-2010-0182 are fixed in Mozilla Firefox For Mac 3.5.9 | Mac |
| pound security update(DSA-3253-1) pound_2.6-2+deb7u1_i386.deb | Linux |
| pound security update(DSA-3253-1) pound_2.6-6+deb8u1_amd64.deb | Linux |
| lighttpd security update(DSA-3489-1) lighttpd_1.4.31-4+deb7u4_i386.deb | Linux |
| lighttpd security update(DSA-3489-1) lighttpd_1.4.31-4+deb7u4_amd64.deb | Linux |
| Vulnerabilities CVE-2011-0534,CVE-2010-4476,CVE-2009-3555 are fixed in Apache - tomcat for Linux 6.0.32 | Linux |
| Vulnerabilities CVE-2011-1088,CVE-2009-3555 are fixed in Apache - tomcat for Linux 7.0.10 | Linux |
| Vulnerabilities CVE-2010-4476,CVE-2009-3555 are fixed in Apache - tomcat for Linux 5.5.33 | Linux |
| Improper Certificate Validation Vulnerability (CVE-2009-3555) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-8866 | Security Update for Windows XP (KB980436) |
| PATCH-8867 | Security Update for Windows Server 2003 (KB980436) |
| PATCH-8869 | Security Update for Windows Vista (KB980436) |
| PATCH-8871 | Security Update for Windows Server 2008 (KB980436) |
| PATCH-8872 | Security Update for Windows 7 (KB980436) |
| PATCH-8873 | Security Update for Windows XP x64 Edition (KB980436) |
| PATCH-8874 | Security Update for Windows Server 2003 x64 Edition (KB980436) |
| PATCH-8876 | Security Update for Windows Vista for x64-based Systems (KB980436) |
| PATCH-8878 | Security Update for Windows Server 2008 x64 Edition (KB980436) |
| PATCH-8879 | Security Update for Windows 7 for x64-based Systems (KB980436) |
| PATCH-8880 | Security Update for Windows Server 2008 R2 x64 Edition (KB980436) |
| PATCH-613630 | Mozilla Firefox For Mac (147.0.4) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234