CVE-2009-3767

Risk Scores

Exploit Intelligence

• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• http://www.openldap.org/devel/cvsweb.cgi/libraries/libldap/tls_o.c.diff?r1=1.8&r2=1.11&f=h (circl)
• 40677 (circl)
• ADV-2009-3056 (circl)
• RHSA-2010:0543 (circl)

…and 19 more exploits

Timeline

• Sep 3, 2009 CVE Published
• Feb 4, 2022 EPSS Score
• Mar 29, 2022 EPSS Score
• Jul 12, 2022 EPSS Score
• Sep 4, 2022 EPSS Score
• Oct 26, 2022 EPSS Score
• Feb 9, 2023 EPSS Score
• Mar 7, 2023 EPSS Score
• Apr 3, 2023 EPSS Score
• Jul 17, 2023 EPSS Score
• Sep 8, 2023 EPSS Score
• Oct 30, 2023 EPSS Score

References

• https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-461/ advisory
• http://lists.vmware.com/pipermail/security-announce/2010/000106.html advisory