Описание
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libgadu | unfixed | package |
Примечания
Intentional design decision
EPSS
Процентиль: 51%
0.00279
Низкий
Связанные уязвимости
ubuntu
больше 11 лет назад
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
redhat
больше 12 лет назад
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
nvd
больше 11 лет назад
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
github
больше 3 лет назад
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
EPSS
Процентиль: 51%
0.00279
Низкий