Konqueror Embedded and KDE 2.2.2 and previous versions does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote malicious users to spoof certificates via a man-in-the-middle attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari 1.0 |
||
kde konqueror embedded 0.1 |
||
turbolinux turbolinux server 8.0 |
||
turbolinux turbolinux workstation 8.0 |
||
redhat linux 7.1 |
||
redhat linux 7.2 |
||
turbolinux turbolinux server 7.0 |
||
turbolinux turbolinux workstation 7.0 |
||
kde kde |