|
297901
|
- |
|
elephantdrive
|
elephantdrive
|
ElephantDrive does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attacke…
|
CWE-20
Improper Input Validation
|
CVE-2012-5818
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297902
|
7.4 |
HIGH
Network
|
amazon
codehaus
|
ec2_api_tools_java_library
xfire
|
Codehaus XFire 1.2.6 and earlier, as used in the Amazon EC2 API Tools Java library and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN)…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5817
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297903
|
- |
|
aol
|
aim
|
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man…
|
CWE-20
Improper Input Validation
|
CVE-2012-5816
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297904
|
- |
|
rackspace
|
rackspace
|
The Rackspace app 2.1.5 for iOS does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-…
|
CWE-20
Improper Input Validation
|
CVE-2012-5815
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297905
|
- |
|
github
roderick_baier
|
gaug.es
weberknecht
|
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certif…
|
CWE-20
Improper Input Validation
|
CVE-2012-5814
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297906
|
- |
|
emorym
|
android_pusher
|
The Android_Pusher library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows …
|
CWE-20
Improper Input Validation
|
CVE-2012-5813
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297907
|
- |
|
acra
|
acra_library
|
The ACRA library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the…
|
CWE-20
Improper Input Validation
|
CVE-2012-5812
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297908
|
- |
|
breezy
|
breezy
|
The Breezy application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-…
|
CWE-310
Cryptographic Issues
|
CVE-2012-5811
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297909
|
5.9 |
MEDIUM
Network
|
jpmorganchase
|
chase_mobile
|
The Chase mobile banking application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, whi…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5810
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297910
|
- |
|
groupon
|
groupon_merchants
|
The Groupon Redemptions application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, whic…
|
CWE-310
Cryptographic Issues
|
CVE-2012-5809
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
