CVE-2003-0960

Published: Dec 15, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

OpenCA before 0.9.1.4 does not use the correct certificate in a chain to check the serial, which could cause OpenCA to accept revoked or expired certificates.

Affected (9)

Products: Openca: Openca

Openca

1 product

Openca

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Openca Openca	Version 0.8.0
Openca Openca	Version 0.8.1
Openca Openca	Version 0.8.6
Openca Openca	Version 0.9.0.1
Openca Openca	Version 0.9.0.2
Openca Openca	Version 0.9.0
Openca Openca	Version 0.9.1.2
Openca Openca	Version 0.9.1.3
Openca Openca	Version 0.9.1

References (2)

http://marc.info/?l=bugtraq&m=107003609308765&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=107003609308765&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.