CVE-2012-5662
x3270 before 3.3.12ga12 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0020 (0.2%)
Percentil: 41.5%
EPSS: 2026-05-06
Afecta
paul_mattes:x3270Descripción técnica
x3270 before 3.3.12ga12 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
Publicada: 27/5/2014, 14:55:02
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://osvdb.org/91572
- http://secunia.com/advisories/52650
- http://sourceforge.net/projects/x3270/files/x3270/3.3.12ga12/
- https://bugzilla.redhat.com/show_bug.cgi?id=889373
- https://exchange.xforce.ibmcloud.com/vulnerabilities/82984
- http://osvdb.org/91572
- http://secunia.com/advisories/52650
- http://sourceforge.net/projects/x3270/files/x3270/3.3.12ga12/