CVE-2015-3644
N/A
N/A
Summary
Stunnel 5.00 through 5.13, when using the redirect option, does not redirect client connections to the expected server after the initial connection, which allows remote attackers to bypass authentication.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.debian.org/security/2015/dsa-3299
- http://www.securityfocus.com/bid/74659
- https://www.stunnel.org/CVE-2015-3644.html
- http://www.securitytracker.com/id/1032324
References
- http://www.debian.org/security/2015/dsa-3299
- http://www.securityfocus.com/bid/74659
- https://www.stunnel.org/CVE-2015-3644.html
- http://www.securitytracker.com/id/1032324
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.