GnuTLS library certificate spoofing

2009-08-20T00:00:00
ID SECURITYVULNS:VULN:10169
Type securityvulns
Reporter BUGTRAQ
Modified 2009-08-20T00:00:00

Description

It's possible to spoof cerificate name with NULL byte; weak MD2-hashed signatures are accepted.