CVE-2009-5144

Publication date

2018-02-03 00:00:00

Family

mitre

State

PUBLISHED

Description

mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is set in a directory context, which allows remote attackers to spoof clients via a crafted certificate.