CVE-2008-2420

Name of the Vulnerable Software and Affected Versions stunnel versions prior to 4.24

Description The issue concerns the stunnel package, where a flaw in the OCSP functionality allows remote attackers to bypass intended access restrictions by using revoked certificates, potentially leading to breaches in confidentiality, integrity, and availability of protected information. This can be exploited remotely.

Recommendations For versions prior to 4.24, update to version 4.24 or later to resolve the issue. As a temporary workaround, consider restricting access to the OCSP functionality until a patch is available.