CVE-2003-0370

Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:apple:safari:1.0:beta:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0:beta2:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror_embedded:0.1:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:kde:kde:*:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:7.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:7.2:*:*:*:*:*:*:*
cpe:2.3:o:turbolinux:turbolinux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:turbolinux:turbolinux_server:8.0:*:*:*:*:*:*:*
cpe:2.3:o:turbolinux:turbolinux_workstation:7.0:*:*:*:*:*:*:*
cpe:2.3:o:turbolinux:turbolinux_workstation:8.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2003-06-16 04:00

Updated : 2023-12-10 10:17


NVD link : CVE-2003-0370

Mitre link : CVE-2003-0370

CVE.ORG link : CVE-2003-0370


JSON object : View

Products Affected

turbolinux

  • turbolinux_server
  • turbolinux_workstation

apple

  • safari

kde

  • konqueror_embedded
  • kde

redhat

  • linux