Improper input validation - #VU35
Published: June 28, 2016 / Updated: November 22, 2018
Vulnerability identifier: #VU35
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear
CVE-ID: N/A
CWE-ID: CWE-20
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor:
Affected software:
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass certain security restrictions.
The vulnerability exists due to incorrect parsing of time in Online Certificate Status Protocol (OSCP) messages in "lib/libssl/src/crypto/ocsp/ocsp_cl.c". A remote attacker can send a specially crafted OSCP message and bypass certain security checks.
Successful exploitation of this vulnerability may potentially result in unauthorized access to restricted resources using an outdated certificate.
Remediation
The following patch resolves the issue:
http://ftp.openbsd.org/pub/OpenBSD/patches/5.9/common/012_crypto.patch.sig
http://ftp.openbsd.org/pub/OpenBSD/patches/5.9/common/012_crypto.patch.sig