Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
OpenSSL Improper Authentication Vulnerability - CVE-2009-0591 - Vulnerability Database
OpenSSL

OpenSSL Improper Authentication Vulnerability - CVE-2009-0591

Low
Reference: CVE-2009-0591
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-0591
Title: OpenSSL Improper Authentication Vulnerability
Overview:

The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j when CMS is enabled does not properly handle errors associated with malformed signed attributes which allows remote attackers to repudiate a signature that originally appeared to be valid but was actually invalid.