4 matches found
CVE-2012-5814
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid...
Code injection
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid...
CVE-2012-5814
CVE-2012-5814 concerns Weberknecht, used in GitHub Gaug.es and related products, which does not verify that the server hostname matches a domain name in the X.509 certificate (CN/subjectAltName). This lack of hostname verification enables MITM attackers to spoof SSL servers by presenting arbitrar...
CVE-2012-5814
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid...