Vulnerabilities > CVE-2005-4839 - Remote Security vulnerability in PureTLS

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
claymore-systems-inc
NVD
Published: 2005-12-31
Updated: 2008-09-05

Summary

PureTLS before 0.9b5 does not clear optional Extensions and Algorithm.Parameters values before parsing, which might trigger an information leak of values from earlier certificates.

Vulnerable Configurations

Part Description Count
Application
Claymore_Systems_Inc
1

References