RSS   Vulnerabilities for 'Mod gnutls'   RSS

2018-02-03
 
CVE-2009-5144

CWE-254
 

 
mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is set in a directory context, which allows remote attackers to spoof clients via a crafted certificate.

 


Copyright 2024, cxsecurity.com

 

Back to Top