Back to search
CVE-2012-6153
Published: Sep 4, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a certificate with a subject that specifies a common name in a field that is not the CN field. NOTE: this issue exists because of an incomplete fix for CVE-2012-5783.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2014:1891
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0765
vendor-advisory
x_refsource_REDHAT
https://access.redhat.com/solutions/1165533
x_refsource_CONFIRM
RHSA-2015:0675
vendor-advisory
x_refsource_REDHAT
RHSA-2014:1098
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0720
vendor-advisory
x_refsource_REDHAT
RHSA-2015:1888
vendor-advisory
x_refsource_REDHAT
RHSA-2014:1833
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0850
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0158
vendor-advisory
x_refsource_REDHAT
RHSA-2014:1834
vendor-advisory
x_refsource_REDHAT
http://svn.apache.org/viewvc?view=revision&revision=1411705
x_refsource_CONFIRM
RHSA-2015:0125
vendor-advisory
x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=1129916
x_refsource_CONFIRM
RHSA-2014:1892
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0851
vendor-advisory
x_refsource_REDHAT
RHSA-2014:1835
vendor-advisory
x_refsource_REDHAT
69257
vdb-entry
x_refsource_BID
USN-2769-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2014:1836
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now