EUVD-2016-6616

Malware in sbrugna...

Intel Crosswalk Man-in-the-Middle Attack Vulnerability

Intel Crosswalk is the United States Intel Intel company's set of Web engines. A man-in-the-middle attack vulnerability exists in Intel Crosswalk because the program fails to properly validate X.509 certificates. An attacker can exploit this vulnerability with a specially crafted certificate to...

CVE-2016-5672

Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all invalid X.509 certificates should be accepted without prompting, which makes it easier for...

CVE-2016-5672

Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all invalid X.509 certificates should be accepted without prompting, which makes it easier for...

Information disclosure

Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all invalid X.509 certificates should be accepted without prompting, which makes it easier for...

CVE-2016-5672

CVE-2016-5672: Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 mishandles an initial user acceptance of an invalid X.509 certificate, causing the app to permanently accept all future invalid certificates without further prompts. T...