Lucene search
K

44 matches found

NVD
NVD
added 2012/11/04 10:55 p.m.23 views

CVE-2012-5818

ElephantDrive does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...

5.8CVSS6.5AI score0.0057EPSS
Exploits1References2
CVE
CVE
added 2012/11/04 10:0 p.m.45 views

CVE-2012-5781

The CVE-2012-5781 entry concerns Amazon Elastic Load Balancing API Tools failing to verify that the server hostname matches the CN/subjectAltName in the X.509 certificate, enabling potential MITM via an arbitrary valid certificate. The root cause is improper hostname verification, related to over...

5.8CVSS6.7AI score0.00725EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2012/11/04 10:0 p.m.45 views

CVE-2012-5823

The CVE-2012-5823 issue affects Open Source Classifieds. It describes a failure to verify that the server hostname matches the CN/subjectAltName in the X.509 certificate, enabling man-in-the-middle attacks by spoofing SSL servers with arbitrary valid certificates, related to the PHP fsockopen fun...

5.8CVSS6.8AI score0.00566EPSS
Exploits1References1Affected Software1
myhack58
myhack58
added 2011/09/01 12:0 a.m.14 views

Tencent 3. vulnerability is a combination of use and solution-vulnerability warning-the black bar safety net

Author: onlyguest Brief description: Permissions bypass+Cross Site+Service end of not verify the=night between 4 million users tragedy Detailed description: The first landing Have a cookie after you open the following page A class=keylink href="http://faxin.soso.com/JSONPageUserGetgold.a%20href= ...

6.8AI score
Exploits0
Rows per page
Query Builder