VYPR
← All advisories
Unrated severityNVD Advisory· Published Jan 7, 2009· Updated Apr 23, 2026

CVE-2009-0051

CVE-2009-0051

Description

ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

Affected products

27
  • Zxid/Zxid27 versions
    cpe:2.3:a:zxid:zxid:*:*:*:*:*:*:*:*+ 26 more
    • cpe:2.3:a:zxid:zxid:*:*:*:*:*:*:*:*range: <=0.29
    • cpe:2.3:a:zxid:zxid:0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.13:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.14:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.15:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.16:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.17:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.18:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.19:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.20:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.21:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.22:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.25:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.26:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.27:*:*:*:*:*:*:*
    • cpe:2.3:a:zxid:zxid:0.28:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.