CVE-2009-3555 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2009-3555

CVE-2009-3555

November 09, 2009

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.

Related Resources (354)

https://github.com/apache/tomcat

http://lists.apple.com/archives/security-announce/2010//May/msg00002.html

http://www.ubuntu.com/usn/USN-927-4

http://secunia.com/advisories/39292

http://secunia.com/advisories/37291

http://www.vupen.com/english/advisories/2010/3086

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html

http://www.securitytracker.com/id?1023217

http://marc.info/?l=bugtraq&m=132077688910227&w=2

http://www.securitytracker.com/id?1023212

http://secunia.com/advisories/42808

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:11617

http://www.vmware.com/security/advisories/VMSA-2011-0003.html

http://security.gentoo.org/glsa/glsa-201203-22.xml

http://www.mandriva.com/security/advisories?name=MDVSA-2010:076

http://secunia.com/advisories/39713

http://marc.info/?l=bugtraq&m=127419602507642&w=2

http://www.securitytracker.com/id?1023163

http://www.vupen.com/english/advisories/2010/1054

http://secunia.com/advisories/37501

http://secunia.com/advisories/48577

http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c

https://nvd.nist.gov/vuln/detail/CVE-2009-3555

https://access.redhat.com/errata/RHSA-2010:0986

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:8366

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html

http://www.vupen.com/english/advisories/2010/0933

http://www.securitytracker.com/id?1023273

http://www.vupen.com/english/advisories/2010/1793

http://support.avaya.com/css/P8/documents/100070150

http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055

http://www.securitytracker.com/id?1023271

http://www.vupen.com/english/advisories/2010/1639

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html

http://secunia.com/advisories/37383

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:11578

http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html

http://www.vupen.com/english/advisories/2010/1107

http://secunia.com/advisories/39136

http://www.vupen.com/english/advisories/2010/3126

https://access.redhat.com/errata/RHSA-2010:0165

http://secunia.com/advisories/39242

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html

http://www.redhat.com/support/errata/RHSA-2010-0786.html

http://www.vupen.com/english/advisories/2010/3069

http://www.us-cert.gov/cas/techalerts/TA10-222A.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088

http://seclists.org/fulldisclosure/2009/Nov/139

https://github.com/apache/tomcat/commit/328a523cbb2a2d4cd55283180614d4e03e2f8f02

https://access.redhat.com/errata/RHSA-2010:0770

https://access.redhat.com/errata/RHSA-2010:0155

https://access.redhat.com/errata/RHSA-2010:0408

http://secunia.com/advisories/42811

https://github.com/apache/tomcat/commit/14e4efd925da58b9fa63f20969fb7349b8a9c30d

http://www.securitytracker.com/id?1023208

http://www.securityfocus.com/archive/1/516397/100/0/threaded

http://www.redhat.com/support/errata/RHSA-2010-0807.html

http://www.securitytracker.com/id?1023205

http://www.securitytracker.com/id?1023274

http://support.apple.com/kb/HT4004

https://github.com/apache/tomcat/commit/30af3f5630542a2340781f66553e734a6fd69701

http://extendedsubset.com/?p=8

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535

http://www.redhat.com/support/errata/RHSA-2010-0768.html

https://access.redhat.com/errata/RHSA-2010:0164

http://osvdb.org/60972

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:10088

https://bugzilla.mozilla.org/show_bug.cgi?id=526689

http://secunia.com/advisories/42724

http://wiki.rpath.com/Advisories:rPSA-2009-0155

https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E

https://access.redhat.com/errata/RHSA-2010:0339

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

http://secunia.com/advisories/38484

http://www.securitytracker.com/id?1023213

http://securitytracker.com/id?1023148

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1

http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848

https://tomcat.apache.org/security-5.html

http://www.redhat.com/support/errata/RHSA-2010-0130.html

http://secunia.com/advisories/38781

http://www.securitytracker.com/id?1023224

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html

http://marc.info/?l=cryptography&m=125752275331877&w=2

http://www.vupen.com/english/advisories/2009/3165

http://www.vupen.com/english/advisories/2010/1191

https://access.redhat.com/security/cve/CVE-2009-3555

http://www.redhat.com/support/errata/RHSA-2010-0167.html

http://www.securityfocus.com/archive/1/508130/100/0/threaded

http://www.securitytracker.com/id?1023211

https://access.redhat.com/errata/RHSA-2009:1579

http://secunia.com/advisories/42379

http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html

http://marc.info/?l=bugtraq&m=130497311408250&w=2

http://extendedsubset.com/Renegotiating_TLS.pdf

http://www.vupen.com/english/advisories/2009/3310

http://www.securityfocus.com/archive/1/507952/100/0/threaded

http://www.securitytracker.com/id?1023206

http://www.redhat.com/support/errata/RHSA-2010-0339.html

http://www.openwall.com/lists/oss-security/2009/11/06/3

http://www.ietf.org/mail-archive/web/tls/current/msg03948.html

http://www-01.ibm.com/support/docview.wss?uid=swg24025312

http://www.vupen.com/english/advisories/2011/0086

http://www.vupen.com/english/advisories/2009/3354

http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html

http://www.securitytracker.com/id?1023272

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315

http://secunia.com/advisories/41818

http://www.securitytracker.com/id?1023270

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049

https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt

http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2

https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html

http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html

http://secunia.com/advisories/39317

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html

http://secunia.com/advisories/37604

http://www.openwall.com/lists/oss-security/2009/11/05/5

http://www.securitytracker.com/id?1023218

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366

http://www.redhat.com/support/errata/RHSA-2010-0155.html

http://www.securityfocus.com/archive/1/522176

http://secunia.com/advisories/37399

http://www.redhat.com/support/errata/RHSA-2010-0338.html

http://www.vupen.com/english/advisories/2010/1673

https://github.com/apache/tomcat/commit/56f67141e82e16f68a860c3af9b7342da35cbe7d

https://access.redhat.com/errata/RHSA-2010:0119

http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html

http://www.opera.com/docs/changelogs/unix/1060/

http://www.redhat.com/support/errata/RHSA-2010-0165.html

http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES

http://secunia.com/advisories/42733

http://www.vupen.com/english/advisories/2010/2745

http://www.openwall.com/lists/oss-security/2009/11/05/3

http://www.links.org/?p=786

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html

http://support.avaya.com/css/P8/documents/100114315

http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html

https://access.redhat.com/errata/RHSA-2010:0786

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7315

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751

http://www.securitytracker.com/id?1023426

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041

http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html

https://access.redhat.com/errata/RHSA-2010:0167

https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@<dev.tomcat.apache.org>

http://www.vupen.com/english/advisories/2010/1350

http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054

http://clicky.me/tlsvuln

http://support.avaya.com/css/P8/documents/100114327

http://www-01.ibm.com/support/docview.wss?uid=swg21432298

https://access.redhat.com/errata/RHSA-2010:0011

http://www.betanews.com/article/1257452450

https://github.com/apache/tomcat/commit/df9633116b5fec8f47f1f008fb89a6e9d5895cd0

http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html

https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@<dev.tomcat.apache.org>

http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1

http://support.apple.com/kb/HT4171

http://www.vupen.com/english/advisories/2010/0916

http://secunia.com/advisories/44954

http://www.securityfocus.com/archive/1/515055/100/0/threaded

https://access.redhat.com/errata/RHSA-2010:0865

http://www.securitytracker.com/id?1023214

https://exchange.xforce.ibmcloud.com/vulnerabilities/54158

http://openbsd.org/errata46.html#004_openssl

http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html

https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E

http://osvdb.org/62210

http://www.securityfocus.com/bid/36935

https://tomcat.apache.org/security-7.html

https://bz.apache.org/bugzilla/show_bug.cgi?id=50325

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html

http://www.redhat.com/support/errata/RHSA-2010-0987.html

http://www.vupen.com/english/advisories/2010/0994

http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

https://access.redhat.com/errata/RHSA-2009:1694

http://www.redhat.com/support/errata/RHSA-2010-0865.html

http://www.vupen.com/english/advisories/2009/3205

http://www.ubuntu.com/usn/USN-927-1

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478

https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E

http://osvdb.org/60521

https://github.com/apache/tomcat/commit/2d4ca03acc27cc883c404d1745d92f983b6fada3

http://www.redhat.com/support/errata/RHSA-2011-0880.html

http://www.debian.org/security/2015/dsa-3253

http://www.mandriva.com/security/advisories?name=MDVSA-2010:089

http://www.openwall.com/lists/oss-security/2009/11/20/1

http://www.vupen.com/english/advisories/2011/0033

http://secunia.com/advisories/37504

http://www.vupen.com/english/advisories/2010/0982

http://www.securitytracker.com/id?1023427

http://secunia.com/advisories/37675

http://www.vupen.com/english/advisories/2009/3313

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html

http://secunia.com/advisories/41480

http://www.openwall.com/lists/oss-security/2009/11/07/3

http://support.avaya.com/css/P8/documents/100081611

http://www.vupen.com/english/advisories/2010/0748

http://secunia.com/advisories/39278

http://secunia.com/advisories/40545

http://lists.apple.com/archives/security-announce/2010//May/msg00001.html

https://access.redhat.com/errata/RHSA-2011:0880

http://www.kb.cert.org/vuls/id/120541

http://secunia.com/advisories/43308

http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html

http://www.vupen.com/english/advisories/2009/3164

http://secunia.com/advisories/39500

http://www.openwall.com/lists/oss-security/2009/11/23/10

http://secunia.com/advisories/42467

http://security.gentoo.org/glsa/glsa-201406-32.xml

https://access.redhat.com/errata/RHSA-2010:0987

http://www.redhat.com/support/errata/RHSA-2010-0770.html

http://www.securitytracker.com/id?1023243

https://access.redhat.com/errata/RHSA-2010:0807

http://secunia.com/advisories/41967

http://www.vupen.com/english/advisories/2010/2010

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html

http://www.debian.org/security/2011/dsa-2141

http://secunia.com/advisories/38241

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml

http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html

http://support.citrix.com/article/CTX123359

https://access.redhat.com/errata/RHSA-2015:1591

http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during

http://www.vmware.com/security/advisories/VMSA-2010-0019.html

http://secunia.com/advisories/37292

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html

http://www.vupen.com/english/advisories/2009/3484

https://access.redhat.com/errata/RHSA-2010:0166

http://secunia.com/advisories/41490

http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1

http://marc.info/?l=bugtraq&m=134254866602253&w=2

http://www.securityfocus.com/archive/1/508075/100/0/threaded

http://secunia.com/advisories/38020

http://marc.info/?l=bugtraq&m=142660345230545&w=2

http://www.openssl.org/news/secadv_20091111.txt

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html

http://www.ingate.com/Relnote.php?ver=481

https://github.com/apache/tomcat/commit/3d315ac9dfaa2c03b4df82938d78bf5b755766b3

http://secunia.com/advisories/39628

http://www.opera.com/support/search/view/944/

http://secunia.com/advisories/40070

http://secunia.com/advisories/37859

http://kbase.redhat.com/faq/docs/DOC-20491

http://secunia.com/advisories/44183

http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html

http://secunia.com/advisories/37453

http://www.vupen.com/english/advisories/2011/0032

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

https://access.redhat.com/errata/RHSA-2010:0338

https://github.com/apache/tomcat/commit/b4e9488629bf03b4b65abf335e536e85386d1366

https://bugzilla.redhat.com/show_bug.cgi?id=533125

http://www.securitytracker.com/id?1023275

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7973

http://www.vupen.com/english/advisories/2010/0173

http://www.arubanetworks.com/support/alerts/aid-020810.txt

http://www.links.org/?p=780

http://www.redhat.com/support/errata/RHSA-2010-0337.html

http://secunia.com/advisories/39819

http://www.securitytracker.com/id?1023209

http://www.redhat.com/support/errata/RHSA-2010-0119.html

http://www.redhat.com/support/errata/RHSA-2010-0986.html

http://secunia.com/advisories/39127

http://ubuntu.com/usn/usn-923-1

https://access.redhat.com/errata/RHSA-2009:1580

https://access.redhat.com/errata/RHSA-2010:0440

http://www.securitytracker.com/id?1024789

https://access.redhat.com/errata/RHSA-2010:0130

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html

https://access.redhat.com/errata/RHSA-2010:0162

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1

http://www.securitytracker.com/id?1023411

http://www.ietf.org/mail-archive/web/tls/current/msg03928.html

http://www-01.ibm.com/support/docview.wss?uid=swg21426108

http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973

http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

http://support.apple.com/kb/HT4170

http://www.opera.com/docs/changelogs/unix/1060

http://www.securitytracker.com/id?1023204

http://secunia.com/advisories/42816

http://sysoev.ru/nginx/patch.cve-2009-3555.txt

http://www.tombom.co.uk/blog/?p=85

http://www.vupen.com/english/advisories/2009/3521

http://secunia.com/advisories/39461

http://secunia.com/advisories/37656

https://access.redhat.com/errata/RHSA-2010:0163

http://secunia.com/advisories/37640

http://security.gentoo.org/glsa/glsa-200912-01.xml

http://www.securitytracker.com/id?1023215

https://tomcat.apache.org/security-6.html

http://www.vupen.com/english/advisories/2010/0848

http://www.securitytracker.com/id?1023210

http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247

https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@<dev.tomcat.apache.org>

http://secunia.com/advisories/39632

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html

http://www.securitytracker.com/id?1023216

http://www.securitytracker.com/id?1023219

http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

http://www.links.org/?p=789

http://marc.info/?l=bugtraq&m=127557596201693&w=2

http://secunia.com/advisories/42377

http://secunia.com/advisories/40866

https://bugzilla.mozilla.org/show_bug.cgi?id=545755

http://www.vupen.com/english/advisories/2009/3220

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html

https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E

http://blogs.iss.net/archive/sslmitmiscsrf.html

http://secunia.com/advisories/39243

http://www.mandriva.com/security/advisories?name=MDVSA-2010:084

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:8535

http://www.opera.com/support/search/view/944

http://secunia.com/advisories/41972

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7478

http://secunia.com/advisories/37320

http://marc.info/?l=bugtraq&m=126150535619567&w=2

http://www.mozilla.org/security/announce/2010/mfsa2010-22.html

http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446

http://www.openoffice.org/security/cves/CVE-2009-3555.html

https://access.redhat.com/errata/RHSA-2010:0768

http://osvdb.org/65202

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html

https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@<dev.tomcat.apache.org>

http://marc.info/?l=bugtraq&m=133469267822771&w=2

https://access.redhat.com/errata/RHSA-2010:0337

http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released

http://secunia.com/advisories/38056

http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only

http://secunia.com/advisories/40747

https://kb.bluecoat.com/index?page=content&id=SA50

http://www.ubuntu.com/usn/USN-1010-1

http://www.vupen.com/english/advisories/2009/3353

http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1

http://openbsd.org/errata45.html#010_openssl

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

http://www.debian.org/security/2009/dsa-1934

http://www.vupen.com/english/advisories/2010/0086

http://www.securitytracker.com/id?1023207

http://www.securitytracker.com/id?1023428

http://secunia.com/advisories/38003

http://www.vupen.com/english/advisories/2009/3587

http://marc.info/?l=bugtraq&m=127128920008563&w=2

http://secunia.com/advisories/38687

http://www.ubuntu.com/usn/USN-927-5

http://www-01.ibm.com/support/docview.wss?uid=swg24006386

Do you need more information?

CVSS v4

Base Score:

6.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

NONE

Vulnerable System Confidentiality

NONE

Vulnerable System Integrity

LOW

Vulnerable System Availability

LOW

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

4.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

LOW

CVSS v2

Base Score:

5.8

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

Weakness Type (CWE)

Improper Certificate Validation

EPSS

Base Score:

1.97