CVE-2016-9952 Information
Description
The verify_certificate function in lib/vtls/schannel.c in libcurl 7.30.0 through 7.51.0 when built for Windows CE using the schannel TLS backend makes it easier for remote attackers to conduct man-in-the-middle attacks via a crafted wildcard SAN in a server certificate as demonstrated by *.com.\
CVSS Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
https://curl.haxx.se/CVE-2016-9952.patch
https://curl.haxx.se/CVE-2016-9952.patch
https://curl.haxx.se/docs/adv_20161221B.html
https://curl.haxx.se/docs/adv_20161221B.html
The
verify_certificate
function
in
lib/vtls/schannel.c
in
libcurl
7.30.0
through
7.51.0
when
built
for
Windows
CE
using
the
schannel
TLS
backend
makes
it
easier
for
remote
attackers
to
conduct
man-in-the-middle
attacks
via
a
crafted
wildcard
SAN
in
a
server
certificate
as
demonstrated
by
*.com.
cpe:2.3:a:haxx:curl::::::::
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
8.1
Share on: