CVE-2008-1676
Last modified
CVE-2008-1676 is a vulnerability of currently unknown severity. Red Hat PKI Common Framework (rhpki-common) in Red Hat Certificate System (aka Certificate Server or RHCS) 7.1 through 7.3, and Netscape Certificate Management System 6.x, does not recognize Certificate Authority profile constraints on Extensions, which might allow remote attackers to bypass intended restrictions and conduct man-in-the-middle attacks by submitting a certificate signing request (CSR) and using the resulting certificate.. EPSS estimates a 1.07% chance of exploitation in the next 30 days.
Description
Red Hat PKI Common Framework (rhpki-common) in Red Hat Certificate System (aka Certificate Server or RHCS) 7.1 through 7.3, and Netscape Certificate Management System 6.x, does not recognize Certificate Authority profile constraints on Extensions, which might allow remote attackers to bypass intended restrictions and conduct man-in-the-middle attacks by submitting a certificate signing request (CSR) and using the resulting certificate.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netscape | Certificate Management System | <= 6.2 |
| Netscape | Certificate Management System | 6.0 |
| Netscape | Certificate Management System | 6.01 |
| Netscape | Certificate Management System | 6.1 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-1676?
How severe is CVE-2008-1676?
How do I fix CVE-2008-1676?
Are you affected by CVE-2008-1676?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST