Lucene search
Ubuntu.comUB:CVE-2011-1428HistoryMar 16, 2011 - 12:00 a.m.
CVE-2011-1428
2011-03-1600:00:00
ubuntu.com
ubuntu.com
5
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
52.7%
Wee Enhanced Environment for Chat (aka WeeChat) 0.3.4 and earlier does not
properly verify that the server hostname matches the domain name of the
subject of an X.509 certificate, which allows man-in-the-middle attackers
to spoof an SSL chat server via an arbitrary certificate, related to
incorrect use of the GnuTLS API.
Notes
| Author | Note |
|---|---|
| seth-arnold | The not-affected versions are not exact. Probably much earlier releases weren’t affected. |
Related
nessus
nessus
Fedora 14 : weechat-0.3.5-1.fc14 (2011-7839)
2011-07-05 00:00:00
Fedora 15 : weechat-0.3.5-1.fc15 (2011-7843)
2011-07-05 00:00:00
Debian DSA-2598-1 : weechat - several vulnerabilities
2013-01-07 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: weechat-0.3.5-1.fc14
2011-07-04 18:54:16
[SECURITY] Fedora 15 Update: weechat-0.3.5-1.fc15
2011-07-04 18:53:08
debiancve
debiancve
CVE-2011-1428
2022-10-03 16:15:11
prion
prion
Code injection
2011-03-16 22:55:00
nvd
nvd
CVE-2011-1428
2011-03-16 22:55:04
cve
cve
CVE-2011-1428
2022-10-03 16:15:11
openvas
openvas
Fedora Update for weechat FEDORA-2011-7839
2011-07-08 00:00:00
Fedora Update for weechat FEDORA-2011-7843
2011-07-12 00:00:00
Fedora Update for weechat FEDORA-2011-7839
2011-07-08 00:00:00
cvelist
cvelist
CVE-2011-1428
2022-10-03 16:15:11
debian
debian
[SECURITY] [DSA 2598-1] weechat security update
2013-01-05 12:40:11
osv
osv
weechat - several
2013-01-05 00:00:00
securityvulns
securityvulns
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
52.7%
Related for UB:CVE-2011-1428