CVE-2007-6591 (Konqueror) |
|
| BugsAlert Home > CVE-2007-6591 (Konqueror) | |
|
KDE Konqueror 3.5.5 and 3.95.00, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regards the certificate as also accepted for all domain names in subjectAltName:dNSName fields, even though these fields cannot be examined in the product, which makes it easier for remote attackers to trick a user into accepting an invalid certificate for a spoofed web site. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6591 Learn more about CVE-2007-6591 (Konqueror) |
|
| Tags: cve-2007-6591 konqueror | |
Related Items |
|
|
POSSIBLE_VUNDO-1
|
|
|
#1717: Table inside of Div producing unresponsive script
|
|
|
FrSIRT - Dictionary Module for Xoops "id" Parameter SQL Injection Vulnerability
|
|
|
FrSIRT - TYPO3 Arbitrary File Upload and Cross Site Scripting Vulnerabilities
|
|
|
PostgreSQL Multiple Vulnerabilities
|
|
|
WORM_GAMMIMA.H
|
|
|
VU#305208: Caucho Resin vulnerable to XSS via "file" parameter to "viewfile"
|
|
