libESMTP X.509 Certificate 'match_component()' Domain Validation Security Bypass Vulnerability

Bugtraq ID: 38538
Class: Design Error
CVE: CVE-2010-1194
Remote: Yes
Local: No
Published: May 29 2005 12:00AM
Updated: Oct 04 2010 07:50PM
Credit: Martin Lambers
Vulnerable: S.u.S.E. SUSE Linux Enterprise 11
S.u.S.E. openSUSE 11.2
S.u.S.E. openSUSE 11.1
S.u.S.E. openSUSE 11.0
MandrakeSoft Linux Mandrake 2010.1 x86_64
MandrakeSoft Linux Mandrake 2010.1
MandrakeSoft Linux Mandrake 2010.0 x86_64
MandrakeSoft Linux Mandrake 2010.0
MandrakeSoft Linux Mandrake 2009.1 x86_64
MandrakeSoft Linux Mandrake 2009.1
MandrakeSoft Linux Mandrake 2009.0 x86_64
MandrakeSoft Linux Mandrake 2009.0
MandrakeSoft Linux Mandrake 2008.0 x86_64
MandrakeSoft Linux Mandrake 2008.0
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
libesmtp libesmtp 1.0.3
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus