Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-3900HistoryOct 14, 2010 - 5:58 a.m.
CVE-2010-3900
2010-10-1405:58:42
Debian Security Bug Tracker
security-tracker.debian.org
13
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.003
Percentile
68.6%
Midori before 0.2.5, when WebKitGTK+ before 1.1.14 or LibSoup before 2.29.91 is used, does not verify X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary https web sites via a crafted server certificate, a related issue to CVE-2010-3312.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | midori | < 0.2.7-1.1 | midori_0.2.7-1.1_all.deb |
Related
cvelist
cvelist
CVE-2010-3900
2010-10-12 21:00:00
CVE-2010-3312
2010-10-12 21:00:00
nvd
nvd
CVE-2010-3900
2010-10-14 05:58:42
CVE-2010-3312
2010-10-14 05:58:13
ubuntucve
ubuntucve
CVE-2010-3900
2010-10-14 00:00:00
CVE-2010-3312
2010-10-14 00:00:00
prion
prion
Open redirect
2010-10-14 05:58:00
Design/Logic Flaw
2010-10-14 05:58:00
cve
cve
CVE-2010-3900
2010-10-14 05:58:42
CVE-2010-3312
2010-10-14 05:58:13
nessus
nessus
openSUSE Security Update : epiphany (openSUSE-SU-2010:1027-1)
2011-05-05 00:00:00
SuSE 11.1 Security Update : epiphany (SAT Patch Number 3611)
2011-01-21 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1)
2011-05-05 00:00:00
debiancve
debiancve
CVE-2010-3312
2010-10-14 05:58:13
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.003
Percentile
68.6%
Related for DEBIANCVE:CVE-2010-3900