CiviCRM 'Hostname' Verification SSL Certificate Security Bypass Vulnerability
|
Bugtraq ID:
|
63976
|
|
Class:
|
Failure to Handle Exceptional Conditions
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jul 07 2013 12:00AM
|
|
Updated:
|
Jul 07 2013 12:00AM
|
|
Credit:
|
Andrew McNaughton, Tim Otten (CiviCRM LLC) and Kevin McArthur
|
|
Vulnerable:
|
CiviCRM CiviCRM 4.3.4
CiviCRM CiviCRM 4.2
CiviCRM CiviCRM 4.1
CiviCRM CiviCRM 4.2.6
CiviCRM CiviCRM 4.2.5
CiviCRM CiviCRM 4.1.1
CiviCRM CiviCRM 4.0.5
|
|
|
|
Not Vulnerable:
|
CiviCRM CiviCRM 4.3.5
|
|
