RSS   Vulnerabilities for 'Gaug.es'   RSS

2012-11-04
 
CVE-2012-5814

 

 
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

 

 >>> Vendor: Github 5 Products
Github enterprise
Gaug.es
Github
Enterprise server
Owslib


Copyright 2022, cxsecurity.com

 

Back to Top