Security Advisory

CVE-2010-5076

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-06-29 19:00:00

Last updated 2024-08-07 04:09:38

Assigner redhat

State PUBLISHED

Description

QSslSocket in Qt before 4.7.0-rc1 recognizes a wildcard IP address in the subjects Common Name field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.

← Browse all CVEs View on cve.org ↗