CVE-2005-2946

The default configuration on OpenSSL before 0.9.8 uses MD5 for creating message digests instead of a more cryptographically strong algorithm, which makes it easier for remote attackers to forge certificates with a valid certificate authority signature.

Severity	HIGH
CVSS	7.5
CWE	CWE-327
KEV
Published	20 years ago
Modified	1 month ago

Related Products

Product	Advisory	Evidence
CiscoWorks Common Services (CS)	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco Wireless Control System (WCS) Software	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco PIX Firewall Software	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco PIX Firewall	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco Mainframe Channel Connection	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco IOS XR Software	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco IOS	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco GSS Global Site Selector	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln
Cisco Adaptive Security Appliance (ASA) Software	Cisco-SA-20051012-CVE-2005-2969	Cisco OpenVuln