Vulnerability Details : CVE-2009-2408
Mozilla Network Security Services (NSS) before 3.12.3, Firefox before 3.0.13, Thunderbird before 2.0.0.23, and SeaMonkey before 1.1.18 do not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority. NOTE: this was originally reported for Firefox before 3.5.
Exploit prediction scoring system (EPSS) score for CVE-2009-2408
Probability of exploitation activity in the next 30 days: 0.25%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 64 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2009-2408
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
5.9
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N |
2.2
|
3.6
|
NIST |
CWE ids for CVE-2009-2408
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
-
The product does not validate, or incorrectly validates, a certificate.Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-2408
-
http://www.mandriva.com/security/advisories?name=MDVSA-2009:216
MandrivaBroken Link
-
http://www.mozilla.org/security/announce/2009/mfsa2009-42.html
Compromise of SSL-protected communication — MozillaVendor Advisory
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10751
404 Not FoundBroken Link
-
http://www.novell.com/linux/security/advisories/2009_48_firefox.html
404 Page Not Found | SUSEBroken Link
-
http://www.securitytracker.com/id?1022632
GoDaddy Domain Name SearchBroken Link;Third Party Advisory;VDB Entry
-
http://www.vupen.com/english/advisories/2009/3184
Webmail: access your OVH emails on ovhcloud.com | OVHcloudBroken Link
-
http://secunia.com/advisories/36125
About Secunia Research | FlexeraBroken Link;Vendor Advisory
-
http://osvdb.org/56723
Broken Link
-
http://www.mandriva.com/security/advisories?name=MDVSA-2009:217
MandrivaBroken Link
-
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
[security-announce] SUSE Security Summary Report: SUSE-SR:2009:018 - openSUSE Security Announce - openSUSE Mailing ListsMailing List
-
http://www.wired.com/threatlevel/2009/07/kaminsky/
Vulnerabilities Allow Attacker to Impersonate Any Website | WIREDPress/Media Coverage
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8458
404 Not FoundBroken Link
-
http://secunia.com/advisories/36669
About Secunia Research | FlexeraBroken Link
-
http://secunia.com/advisories/36139
About Secunia Research | FlexeraBroken Link;Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2009:197
MandrivaBroken Link
-
http://www.vupen.com/english/advisories/2009/2085
Webmail: access your OVH emails on ovhcloud.com | OVHcloudBroken Link;Vendor Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=510251
510251 – (CVE-2009-2408) CVE-2009-2408 firefox/nss: doesn't handle NULL in Common Name properlyIssue Tracking
-
http://www.redhat.com/support/errata/RHSA-2009-1432.html
SupportBroken Link
-
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021030.1-1
Broken Link
-
http://secunia.com/advisories/36434
About Secunia Research | FlexeraBroken Link;Vendor Advisory
-
http://marc.info/?l=oss-security&m=125198917018936&w=2
'[oss-security] More CVE-2009-2408 like issues' - MARCMailing List
-
http://www.redhat.com/support/errata/RHSA-2009-1207.html
SupportBroken Link
-
https://usn.ubuntu.com/810-2/
404: Page not found | UbuntuBroken Link
-
http://www.ubuntu.com/usn/usn-810-1
USN-810-1: NSS vulnerabilities | Ubuntu security notices | UbuntuThird Party Advisory
-
http://www.debian.org/security/2009/dsa-1874
[SECURITY] [DSA 1874-1] New nss packages fix several vulnerabilitiesMailing List
-
http://secunia.com/advisories/36157
About Secunia Research | FlexeraBroken Link;Vendor Advisory
-
http://www.openldap.org/devel/cvsweb.cgi/libraries/libldap/tls_m.c.diff?r1=1.8&r2=1.11&f=h
404 Not FoundBroken Link
-
http://secunia.com/advisories/36088
About Secunia Research | FlexeraBroken Link;Vendor Advisory
-
http://secunia.com/advisories/37098
About Secunia Research | FlexeraBroken Link
-
http://isc.sans.org/diary.html?storyid=7003
SANS.edu Internet Storm Center - SANS Internet Storm CenterBroken Link
Products affected by CVE-2009-2408
- cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise:11.0:-:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise:10.0:-:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:network_security_services:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
- cpe:2.3:o:opensuse:opensuse:*:*:*:*:*:*:*:*