CVE-2008-3249 (thinkvantage_system

CVE-2008-3249 (thinkvantage_system_update)
BugsAlert Home > CVE-2008-3249 (thinkvantage_system_update)




The client in Lenovo System Update before 3.14 does not properly validate the certificate when establishing an SSL connection, which allows remote attackers to install arbitrary packages via an SSL certificate whose X.509 headers match a public certificate used by IBM. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3249 Learn more about CVE-2008-3249 (thinkvantage_system_update)


Tags: cve-2008-3249 thinkvantage system update

Related Items
CVE-2007-6636 (Bitflu)
August Malware Roundup
How to Mangle Information: Coverity's Open Source Bug Report
CVE-2008-3830 (condor)
BKDR_HUPIGON.FA
Chris Wysopal: Standing on Other's Shoulders
CVE-2008-0182 (Liferay Enterprise Portal)

CVE-2008-3249 (thinkvantage_system_update)