1 results (0.001 seconds)
CVSS: 6.4EPSS: 0%CPEs: 5EXPL: 0
CVSS: 6.4EPSS: 0%CPEs: 5EXPL: 0CVE-2014-0350
https://notcve.org/view.php?id=CVE-2014-0350
26 Apr 2014 — The Poco::Net::X509Certificate::verify method in the NetSSL library in POCO C++ Libraries before 1.4.6p4 allows man-in-the-middle attackers to spoof SSL servers via crafted DNS PTR records that are requested during comparison of a server name to a wildcard domain name in an X.509 certificate. El método Poco::Net::X509Certificate::verify en la libraría NetSSL en POCO C++ Libraries anterior a 1.4.6p4 permite a atacantes man-in-the-middle falsificar servidores SSL a través de registros DNS PTR manipulados que ... • http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177471.html • CWE-310: Cryptographic Issues •