|
293711
|
5.9 |
MEDIUM
Network
|
lynx
canonical
|
lynx
ubuntu_linux
|
Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to …
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5821
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293712
|
- |
|
google
|
admob
|
The developer-account sample code in Google AdMob does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, wh…
|
CWE-20
Improper Input Validation
|
CVE-2012-5820
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293713
|
7.4 |
HIGH
Network
|
filesanywhere
|
filesanywhere
|
FilesAnywhere does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attacke…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5819
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293714
|
- |
|
elephantdrive
|
elephantdrive
|
ElephantDrive does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attacke…
|
CWE-20
Improper Input Validation
|
CVE-2012-5818
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293715
|
7.4 |
HIGH
Network
|
amazon
codehaus
|
ec2_api_tools_java_library
xfire
|
Codehaus XFire 1.2.6 and earlier, as used in the Amazon EC2 API Tools Java library and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN)…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5817
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293716
|
- |
|
aol
|
aim
|
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man…
|
CWE-20
Improper Input Validation
|
CVE-2012-5816
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293717
|
- |
|
rackspace
|
rackspace
|
The Rackspace app 2.1.5 for iOS does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-…
|
CWE-20
Improper Input Validation
|
CVE-2012-5815
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293718
|
- |
|
github
roderick_baier
|
gaug.es
weberknecht
|
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certif…
|
CWE-20
Improper Input Validation
|
CVE-2012-5814
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293719
|
- |
|
emorym
|
android_pusher
|
The Android_Pusher library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows …
|
CWE-20
Improper Input Validation
|
CVE-2012-5813
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293720
|
- |
|
acra
|
acra_library
|
The ACRA library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the…
|
CWE-20
Improper Input Validation
|
CVE-2012-5812
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
