3 matches found
CVE-2010-1802
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a certificate associated with a similar domain name, as demonstrated by use of a www.example.con...
CVE-2010-1802
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a certificate associated with a similar domain name, as demonstrated by use of a www.example.con...
CVE-2010-1802
This CVE (CVE-2010-1802) affects Apple Mac OS X 10.5.8 and 10.6.4 libsecurity, where domain-name comparisons in X.509 certificates can be bypassed, enabling MITM with a certificate for a similar domain (e.g., www.example.con to spoof www.example.com). Root cause: improper domain-name comparison i...