Montavista
Got a hot project?  Login
  • NETWORK INFRASTRUCTURE
  • OFFICE AUTOMATION
  • MEDICAL
  • ENGINEERING SERVICES
  • COMPANY

CVE Vulnerabilities
  • CVE-2012
  • CVE-2011
  • CVE-2010
  • CVE-2009
  • CVE-2008
  • CVE-2007
  • CVE-2006
  • CVE-2005
  • CVE-2004
  • CVE-2003
CVE-2008-4989

Severity : Medium
Published : 2008-11-12
Modified : 2010-08-21
Base Score : 4.3
Details : The _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.1 trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed certificate, which allows man-in-the-middle attackers to insert a spoofed certificate for any Distinguished Name (DN).
Product/Version : CGE 5.x  
Mobilinux 5.x  
Pro 5.0  
Mobilinux 5.0.24  
MVL 5 Atom  
Carrier Grade CGE 6.0  
 
 
 


CVE Vulnerabilities List CVE-2008
CVE-2008-7256CVE-2008-7068CVE-2008-5713CVE-2008-5300
CVE-2008-5286CVE-2008-5161CVE-2008-5079CVE-2008-5029
CVE-2008-4989CVE-2008-4864CVE-2008-4685CVE-2008-4554
CVE-2008-4316CVE-2008-4309CVE-2008-4307CVE-2008-4210
CVE-2008-4109CVE-2008-4101CVE-2008-3934CVE-2008-3933
CVE-2008-3932CVE-2008-3915CVE-2008-3527CVE-2008-3526
CVE-2008-3522CVE-2008-3521CVE-2008-3520CVE-2008-3294
CVE-2008-3276CVE-2008-3275CVE-2008-3272CVE-2008-3146
CVE-2008-3142CVE-2008-3141CVE-2008-3140CVE-2008-3139
CVE-2008-3138CVE-2008-3137CVE-2008-2952CVE-2008-2812
CVE-2008-2729CVE-2008-2364CVE-2008-2292CVE-2008-2108
CVE-2008-2107CVE-2008-2051CVE-2008-1927CVE-2008-1808
CVE-2008-1807CVE-2008-1806CVE-2008-1722CVE-2008-1678
CVE-2008-1673CVE-2008-1657CVE-2008-1483CVE-2008-1372
CVE-2008-1367CVE-2008-0598CVE-2008-0596CVE-2008-0122
CVE-2008-0007CVE-2008-0005


Locations | Careers | Privacy Policy     
© 2013 MontaVista Software, LLC. All Rights Reserved