Incorrect UTCTime date range validation in MatrixSSL version 3.7.2 allows for 100-year certificate expiration extension

Incorrect UTCTime date range validation in MatrixSSL version 3.7.2 allows for 100-year certificate expiration extension

CVE-2017-1000415 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

MatrixSSL version 3.7.2 has an incorrect UTCTime date range validation in its X.509 certificate validation process resulting in some certificates have their expiration (beginning) year extended (delayed) by 100 years.

Learn more about our Web Application Penetration Testing UK.