The TLS stack in Mono prior to 3.12.1 allows man-in-the-middle malicious users to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mono-project mono |
||
debian debian linux 6.0 |