RSS   Vulnerabilities for 'Libsecurity'   RSS

2010-08-25
 
CVE-2010-1802

CWE-287
 

 
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a certificate associated with a similar domain name, as demonstrated by use of a www.example.con certificate to spoof www.example.com.

 

 >>> Vendor: Apple 126 Products
IOS
Appleshare
A UX
JAVA
Mac os
Mac os x
Ichat server
Appleshare mail server
Webobjects
Mac os runtime for java
CUPS
Quicktime
Personal web sharing
Claris emailer
Mac os x server
Tcp ip configuration utility
Darwin streaming server
Quicktime streaming server
Quicktime darwin mp3 broadcaster
802.11n
Safari
Afp server
ICAL
Ichat
Ichat av
Remote desktop
Apache mod digest apple
Xcode
Itunes
Airport express
Airport extreme
Quicktime pictureviewer
Applescript
Terminal
Keynote
Airport card
MAIL
Weblog server
Textedit
Imageio
XSAN
Bomarchivehelper
Iphoto
Preview
Webkit
Minimal slp service agent
Software update
Cfnetwork
Installer
Webcore
Instant message framework
Mdnsresponder
Imovie
Mac os x preview.app
Server manager
Xserve lights-out management
Iphone
Pdfkit
Quartz composer
Core audio technologies
Iphone os
Mobile safari
Aperture
Podcast producer
Apple airport extreme base station
Core image fun house
Xcode tools
Carboncore
Coregraphics
Data detectors engine
Quicklook
Bonjour
Motion
Ipod touch
Iphone configuration web utility
Quicktime mpeg-2 playback component
Airport express base station firmware
Airport extreme base station firmware
Time capsule
Garageband
Java 1.4
Java 1.5
Java 1.6
Airport utility
Libsecurity
Apple type services
Apple tv
Ipad2
Apple remote desktop
Swift
Olive toast documents pro file viewer
Airport base station firmware
Os x server
Pages
Boot camp
Watch os
Watchos
Iwork
Numbers
Ibooks author
See all Products for Vendor Apple


Copyright 2024, cxsecurity.com

 

Back to Top