| ID | CVE-2012-2993 | ||||||
| Sažetak | Microsoft Windows Phone 7 does not verify the domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL server for the (1) POP3, (2) IMAP, or (3) SMTP protocol via an arbitrary valid certificate. | ||||||
| Reference |
|
||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:H/Au:N/C:P/I:N/A:N | ||||||
| Zadnje važnije ažuriranje | 16-01-2025 - 22:15 | ||||||
| Objavljeno | 18-09-2012 - 03:48 |
