CVE-2014-3616 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2014-3616

CWE

https://cwe.mitre.org/data/definitions/613.html

nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache or ssl_session_ticket_key for multiple servers, can reuse a cached SSL session for an unrelated context, which allows remote attackers with certain privileges to conduct virtual host confusion attacks.

Weakness

According to WASC, “Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization.”

Affected Software

Name	Vendor	Start Version	End Version
Nginx	F5	0.5.6 (including)	1.6.2 (excluding)
Nginx	F5	1.7.0 (including)	1.7.5 (excluding)
Nginx	Ubuntu	esm-infra-legacy/trusty	*
Nginx	Ubuntu	lucid	*
Nginx	Ubuntu	precise	*
Nginx	Ubuntu	trusty	*
Nginx	Ubuntu	trusty/esm	*
Nginx	Ubuntu	upstream	*

Potential Mitigations

References

http://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html
http://www.debian.org/security/2014/dsa-3029
http://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html
http://www.debian.org/security/2014/dsa-3029