Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:3 a.m.5 views

SUSE CVE-2009-2666

socket.c in fetchmail before 6.3.11 does not properly handle a '\0' character in a domain name in the subject's Common Name CN field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification...

6.4CVSS6.8AI score0.01503EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/04/12 9:20 p.m.5 views

samba: Server certificates not validated at client side

It was found that Samba did not validate SSL/TLS certificates in certain connections. A man-in-the-middle attacker could use this flaw to spoof a Samba server using a specially crafted SSL/TLS certificate...

7.4CVSS6.7AI score0.02581EPSS
Exploits0References5
PyPA
PyPA
added 2013/09/30 9:55 p.m.7 views

PYSEC-2013-31

The X509Extension in pyOpenSSL before 0.13.1 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate...

4.3CVSS6.8AI score0.01197EPSS
Exploits0References7Affected Software1
Gentoo Linux
Gentoo Linux
added 2010/01/05 12:0 a.m.64 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below and the associated PHP release notes...

10CVSS8.4AI score0.12041EPSS
Exploits30
Rows per page
Query Builder