RSS   Vulnerabilities for 'Gaug.es'   RSS

2012-11-04
 
CVE-2012-5814

 

 
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

 

 >>> Vendor: Github 7 Products
Enterprise server
Github enterprise
Gaug.es
Github
Owslib
Gh-ost
Viewcomponent


Copyright 2024, cxsecurity.com

 

Back to Top