Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Safari | Apple | 1.0 | 1.0 |
Safari | Apple | 1.0 | 1.0 |
Konqueror_embedded | Kde | 0.1 | 0.1 |