Description
The default configuration on OpenSSL before 0.9.8 uses MD5 for creating message digests instead of a more cryptographically strong algorithm, which makes it easier for remote attackers to forge certificates with a valid certificate authority signature.
Remediation
References
Related Vulnerabilities
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9851)
MySQL CVE-2021-2226 Vulnerability (CVE-2021-2226)
Drupal Core 5.x Arbitrary Code Execution (5.0 - 5.2)
WordPress Plugin ImageBoss-Images Up To 60% Smaller & CDN Cross-Site Scripting (3.0.4)
WordPress Plugin PhoneTrack Meu Site Manager Cross-Site Scripting (0.1)