cURL/libcURL SSL Certificate Host Name Validation Security Bypass Vulnerability

Bugtraq ID: 64431
Class: Design Error
CVE: CVE-2013-6422
Remote: Yes
Local: No
Published: Dec 17 2013 12:00AM
Updated: Jan 20 2014 03:23PM
Credit: Marc Deslauriers
Vulnerable: Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Daniel Stenberg curl 7.24.0
Daniel Stenberg curl 7.23.1
Daniel Stenberg curl 7.21.7
Daniel Stenberg curl 7.21.6
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus