Ruby Net::HTTPS library certificates validation cryptographic vulnerability

2007-10-01T00:00:00
ID SECURITYVULNS:VULN:8200
Type securityvulns
Reporter BUGTRAQ
Modified 2007-10-01T00:00:00

Description

Certificate's CN field is not validated against DNS name, making it's possible to use valid certificate with wrong CN.