Lucene search
K

191 matches found

Tenable Nessus
Tenable Nessus
added 2013/02/04 12:0 a.m.35 views

Fedora 18 : jakarta-commons-httpclient-3.1-12.fc18 (2013-1203)

This update fixes a security vulnerability that caused jakarta-commons-httpclient not to verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allowed man-in-the-middle attackers to spoof SSL servers via...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/02/04 12:0 a.m.30 views

Fedora 17 : jakarta-commons-httpclient-3.1-12.fc17 (2013-1189)

This update fixes a security vulnerability that caused jakarta-commons-httpclient not to verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allowed man-in-the-middle attackers to spoof SSL servers via...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/02/04 12:0 a.m.40 views

Fedora 16 : jakarta-commons-httpclient-3.1-12.fc16 (2013-1289)

This update fixes a security vulnerability that caused jakarta-commons-httpclient not to verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allowed man-in-the-middle attackers to spoof SSL servers via...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.21 views

Fedora Update for jakarta-commons-httpclient FEDORA-2013-1203

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.31 views

Fedora Update for jakarta-commons-httpclient FEDORA-2013-1289

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References2
OSV
OSV
added 2012/11/04 10:55 p.m.4 views

DEBIAN-CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS9.1AI score0.09254EPSS
Exploits0References1
NVD
NVD
added 2012/11/04 10:55 p.m.23 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS6.3AI score0.09254EPSS
Exploits0References18
Debian CVE
Debian CVE
added 2012/11/04 10:0 p.m.38 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS7.3AI score0.09254EPSS
Exploits0
Cvelist
Cvelist
added 2012/11/04 10:0 p.m.25 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

6.7AI score0.09254EPSS
Exploits0References18
CVE
CVE
added 2012/11/04 10:0 p.m.526 views

CVE-2012-5783

Apache Commons HttpClient 3.x (as used in Amazon FPS Java SDK and related products) is affected by CVE-2012-5783: the code does not verify that the server hostname matches the CN/subjectAltName in the X.509 certificate, enabling potential MITM spoofing with arbitrary certificates. AIX advisories,...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References18Affected Software1
UbuntuCve
UbuntuCve
added 2012/11/04 12:0 a.m.44 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS6.9AI score0.09254EPSS
Exploits0References3
Rows per page
Query Builder