CVE-2001-1568

2022-10-0316:22:34

mitre

www.cve.org

cmg wap gateway

ssl certificates

spoofing

vulnerability

man-in-the-middle attack

6.5 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.0%

JSON

CMG WAP gateway does not verify the fully qualified domain name URL with X.509 certificates from root certificate authorities, which allows remote attackers to spoof SSL certificates via a man-in-the-middle attack.

References

archives.neohapsis.com/archives/bugtraq/2001-07/0127.html

www.iss.net/security_center/static/6814.php