Back to search
CVE-2013-4314
Published: Sep 30, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
The X509Extension in pyOpenSSL before 0.13.1 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
DSA-2763
vendor-advisory
x_refsource_DEBIAN
[pyOpenSSL-Users] 20130904 pyOpenSSL 0.13.1
mailing-list
x_refsource_MLIST
https://bugzilla.redhat.com/show_bug.cgi?id=1005325
x_refsource_CONFIRM
openSUSE-SU-2013:1648
vendor-advisory
x_refsource_SUSE
[oss-security] 20130906 Re: CVE request: pyOpenSSL hostname check bypassing vulnerability
mailing-list
x_refsource_MLIST
USN-1965-1
vendor-advisory
x_refsource_UBUNTU
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now