• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Trolltech Qt QSslSocket Class Certificate Verification Security Bypass Vulnerability

Bugtraq ID:	27112
Class:	Unknown
CVE:	CVE-2007-5965
Remote:	Yes
Local:	No
Published:	Dec 21 2007 12:00AM
Updated:	Feb 21 2008 06:43PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Ubuntu Ubuntu Linux 7.10 sparc Ubuntu Ubuntu Linux 7.10 powerpc Ubuntu Ubuntu Linux 7.10 i386 Ubuntu Ubuntu Linux 7.10 amd64 Trolltech Qt 4.3.2 Trolltech Qt 4.3.1 Trolltech Qt 4.3 S.u.S.E. openSUSE 10.3 RedHat Fedora 8 0 RedHat Fedora 7 0 MandrakeSoft Linux Mandrake 2008.0 x86_64 MandrakeSoft Linux Mandrake 2008.0
Not Vulnerable:	Trolltech Qt 4.3.3