DEBIAN-CVE-2009-3555

Advisory lineage Upstream: 1 Downstream: 6

Upstream

CVE-2009-3555

Downstream

DLA-400-1 DSA-1934-1 DSA-2141-1 DSA-2141-2 DSA-2626-1 DSA-3253-1

Published: 09 Nov 2009, 17:30

Last modified:28 May 2026, 09:00

Vulnerability Summary

Overall Risk (default)

high

70/100

CVSS Score

9.8 CRITICAL

3.1 (osv_debian)

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

09 Nov 2009, 17:30

Published

Vulnerability first disclosed

28 May 2026, 09:00

Last Modified

Vulnerability information updated

Description

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.

CVSS Metrics

v3.1•CRITICAL•Score: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Systems

debian•apache2
< 2.2.14-2 | < 2.2.14-2 | < 2.2.14-2 | < 2.2.14-2
debian•lighttpd
< 1.4.30-1 | < 1.4.30-1 | < 1.4.30-1 | < 1.4.30-1
debian•nginx
< 0.7.64-1 | < 0.7.64-1 | < 0.7.64-1 | < 0.7.64-1
debian•nss
< 3.12.6-1 | < 3.12.6-1 | < 3.12.6-1 | < 3.12.6-1
debian•openssl
< 0.9.8k-6 | < 0.9.8k-6 | < 0.9.8k-6 | < 0.9.8k-6
debian•pound
< 2.6-6.1 | < 2.6-6.1 | < 2.6-6.1
debian•tomcat-native
< 1.1.18-1 | < 1.1.18-1 | < 1.1.18-1 | < 1.1.18-1

References (1)

https://security-tracker.debian.org/tracker/CVE-2009-3555