2 matches found
CVE-2009-3454
...
CVE-2009-3454
CVE-2009-2510 describes a spoofing vulnerability in the Windows CryptoAPI where the Common Name (CN) field in X.509 certificates containing a NULL terminator is misparsed, allowing MITM-style impersonation if a malicious cert is issued by a trusted CA. The issue affects multiple Windows versions ...