Qt SSL Certificate IP Address Wildcard Validation Security Bypass Vulnerability

Bugtraq ID: 42833
Class: Design Error
CVE: CVE-2010-5076
Remote: Yes
Local: No
Published: Aug 27 2010 12:00AM
Updated: Jul 12 2012 05:00PM
Credit: Richard Moore and Simon Ward.
Vulnerable: Ubuntu Ubuntu Linux 11.04 powerpc
Ubuntu Ubuntu Linux 11.04 i386
Ubuntu Ubuntu Linux 11.04 ARM
Ubuntu Ubuntu Linux 11.04 amd64
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
Trolltech Qt 4.6
Red Hat Enterprise Linux Workstation Optional 6
Red Hat Enterprise Linux Workstation 6
Red Hat Enterprise Linux Server Optional 6
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux HPC Node Optional 6
Red Hat Enterprise Linux HPC Node 6
Red Hat Enterprise Linux Desktop Optional 6
Red Hat Enterprise Linux Desktop 6
Not Vulnerable: Trolltech Qt 4.7.0


 

Privacy Statement
Copyright 2010, SecurityFocus