PT-2014-5412 · Apache+3 · Apache Axis+3

Published

2014-08-27

Updated

2023-02-13

CVE-2014-3596

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Apache Axis versions 1.4 and earlier

Description The issue arises from the getCN function not properly verifying that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate. This allows man-in-the-middle attackers to spoof SSL servers via a certificate with a subject that specifies a common name in a field that is not the CN field. The problem exists due to an incomplete fix for a previous issue.

Recommendations For Apache Axis versions 1.4 and earlier, consider updating to a version that properly verifies the server hostname against the X.509 certificate's Common Name or subjectAltName field to prevent man-in-the-middle attacks. As a temporary workaround, consider restricting the use of SSL connections to trusted servers with properly validated certificates.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-297

Related Identifiers

CESA-2014_1193

CVE-2014-3596

DLA-169-1

GHSA-R53V-VM87-F72C

MGASA-2014-0549

OPENSUSE-SU-2019:1497-1

OPENSUSE-SU-2019_1497-1

OPENSUSE-SU-2019_1526-1

OPENSUSE-SU-2024:10646-1

RHSA-2014:1193

RHSA-2014_1193

SUSE-SU-2019:1373-1

SUSE-SU-2019:1373-2

SUSE-SU-2019:1382-1

Affected Products

Apache Axis

Centos

Red Hat

Suse

PT-2014-5412 · Apache+3 · Apache Axis+3

CVE-2014-3596

Weakness Enumeration

Related Identifiers

Affected Products

References · 62