1 results (0.001 seconds)
CVSS: 5.9EPSS: 0%CPEs: 6EXPL: 0
CVSS: 5.9EPSS: 0%CPEs: 6EXPL: 0CVE-2011-0738
https://notcve.org/view.php?id=CVE-2011-0738
02 Feb 2011 — MyProxy 5.0 through 5.2, as used in Globus Toolkit 5.0.0 through 5.0.2, does not properly verify the (1) hostname or (2) identity in the X.509 certificate for the myproxy-server, which allows remote attackers to spoof the server and conduct man-in-the-middle (MITM) attacks via a crafted certificate when executing (a) myproxy-logon or (b) myproxy-get-delegation. MyProxy v5.0 hasta v5.2, tal como se utiliza en Globus Toolkit v5.0.0 hasta v5.0.2, no comprueba correctamente (1) el nombre de host o (2) la identi... • http://grid.ncsa.illinois.edu/myproxy/security/myproxy-adv-2011-01.txt • CWE-20: Improper Input Validation •