CVE-2009-4147 — Vulnetix

CVE-2009-4147 PUBLISHED

EPSS 12.58% · 94.1th percentile

Risk Scores

EPSS Score

12.58%

94.1th percentile

Exploit Intelligence

A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
CIRCL confirmed: CVE-2009-4147 (circl-sighting)
CIRCL seen: CVE-2009-4147 (circl-sighting)
CIRCL seen: CVE-2009-4147 (circl-sighting)
CIRCL seen: CVE-2009-4147 (circl-sighting)
http://packetstormsecurity.com/files/152997/FreeBSD-rtld-execl-Privilege-Escalation.html (circl)

…and 8 more exploits

Timeline

Nov 30, 2009 PoC Published
Dec 2, 2009 CVE Published
May 20, 2019 PoC Published
May 22, 2019 PoC Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score

References

https://cert.ssi.gouv.fr/avis/CERTA-2009-AVI-528/ advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›