KDE KSSL Common Name SSL Certificate Spoofing Vulnerability

Bugtraq ID: 49925
Class: Design Error
CVE: CVE-2011-3365
CVE-2011-3366
CVE-2011-3367
Remote: Yes
Local: No
Published: Oct 03 2011 12:00AM
Updated: Apr 13 2015 10:03PM
Credit: Tim Brown of Nth Dimension.
Vulnerable: Ubuntu Ubuntu Linux 11.04 powerpc
Ubuntu Ubuntu Linux 11.04 i386
Ubuntu Ubuntu Linux 11.04 ARM
Ubuntu Ubuntu Linux 11.04 amd64
Ubuntu Ubuntu Linux 10.10 powerpc
Ubuntu Ubuntu Linux 10.10 i386
Ubuntu Ubuntu Linux 10.10 ARM
Ubuntu Ubuntu Linux 10.10 amd64
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
Rekonq Rekonq 0.7.0
Redhat Enterprise Linux WS 4
Redhat Enterprise Linux Workstation Optional 6
Redhat Enterprise Linux Workstation 6
Redhat Enterprise Linux Server Optional 6
Redhat Enterprise Linux Server 6
Redhat Enterprise Linux HPC Node Optional 6
Redhat Enterprise Linux ES 4
Redhat Enterprise Linux Desktop Workstation 5 client
Redhat Enterprise Linux Desktop Optional 6
Redhat Enterprise Linux Desktop 6
Redhat Enterprise Linux Desktop 5 client
Redhat Enterprise Linux AS 4
Redhat Enterprise Linux Desktop version 4
Redhat Enterprise Linux 5 Server
Psi Psi 0.12
Oracle Enterprise Linux 6
Oracle Enterprise Linux 5
Oracle Enterprise Linux 4
Mandriva Linux Mandrake 2011 x86_64
Mandriva Linux Mandrake 2011
Mandriva Linux Mandrake 2010.1 x86_64
Mandriva Linux Mandrake 2010.1
KDE Kde Sc 4.7.1
KDE Kde Sc 4.6.1
KDE Kde Sc 4.6.0
Gentoo Linux
Avaya Aura Presence Services 6.1.1
Avaya Aura Presence Services 6.1
Avaya Aura Presence Services 6.0
Arora Arora 0.10.2
Arora Arora 0.10.0-1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus