|
| Description: | | lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates. |
|
| Impact: | | An attacker can take advantage of the vulnerability to bypass the security policy implemented by the software administrator, and perform unauthorized actions to the target system. |
|
| Affected OS: | | Windows, Solaris, Other Unix, FreeBSD, Linux |
|
| Reference: | | SecurityFocusBID:65559
|
|