Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
mutt_ssl.c in mutt 1.5.19 and 1.5.20, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mutt加密漏洞
Vulnerability Description
Mutt是Linux下的一个Email程序。 Mutt的OpenSSL组件存在加密漏洞。Mutt的mutt_ssl.c没有正确处理X.509证书的Common Name域的'\0'字符,中间人攻击者可以通过使用一个特制的由合法证书授权机构颁发的证书来欺骗任意的SSL服务器。
CVSS Information
N/A
Vulnerability Type
N/A