Computer Security
[EN] securityvulns.ru no-pyccku


git / Apple Xcode certificate spoofing
Published:02.10.2013
Source:
SecurityVulns ID:13315
Type:m-i-t-m
Threat Level:
5/10
Description:Git certificate spoofing.
Affected:GIT : git 1.8
CVE:CVE-2013-0308 (The imap-send command in GIT before 1.8.1.4 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.)
Original documentdocumentAPPLE, APPLE-SA-2013-09-18-3 Xcode 5.0 (02.10.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod