Apple Safari NULL Character CA SSL Certificate Validation Security Bypass Vulnerability

Bugtraq ID: 36477
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Jul 30 2009 12:00AM
Updated: Oct 05 2009 08:49PM
Credit: Dan Kaminsky and Moxie Marlinspike
Vulnerable: Apple Safari For Windows 3.2.1
Apple Safari 4.0.3 for Windows
Apple Safari 4.0.2 for Windows
Apple Safari 3.2.3 for Windows
Apple Safari 3.2.2 for Windows
Apple Safari 3.1.2 for Windows
Apple Safari 3.1.1 for Windows
Apple Safari 3.0.4 Beta for Windows
Apple Safari 3.0.3 Beta for Windows
Apple Safari 3.0.2 Beta for Windows
Apple Safari 3.0.1 Beta for Windows
Apple Safari 4 for Windows
Apple Safari 3.1 for Windows
Apple Safari 3 Beta for Windows
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus