Summary
The remote host seems to be running an older version of OpenCA.
It is reported that OpenCA versions up to and incluing 0.9.1.6 contains a flaw that may lead an attacker to bypass signature verification of a certificate.
Solution
Upgrade to the newest version of this software
Severity
Classification
-
CVE CVE-2004-0004 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Atutor AChecker Multiple SQL Injection and XSS Vulnerabilities
- Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object Remote Code Execution
- Artmedic Kleinanzeigen File Inclusion Vulnerability
- Apache Tomcat /servlet Cross Site Scripting
- AlienVault OSSIM 'date_from' Parameter Multiple SQL Injection Vulnerabilities