Security Advisory

CVE-2009-0050

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-01-07 18:00:00

Last updated 2024-08-07 04:17:10

Assigner mitre

State PUBLISHED

Description

Lasso 2.2.1 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

← Browse all CVEs View on cve.org ↗