CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-22 18:09:40 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
2ef066380cb36dba2e454190ca2349fcff6ca2df
CVEs-PoC/2009/CVE-2009-0126.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

872 B
Raw Blame History

CVE-2009-0126

Description

The decrypt_public function in lib/crypt.cpp in the client in Berkeley Open Infrastructure for Network Computing (BOINC) 6.2.14 and 6.4.5 does not check the return value from the OpenSSL RSA_public_decrypt function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

POC

Reference

No PoCs from references.

Github

Reference in New Issue View Git Blame Copy Permalink