← Back

CVE-2003-0370

nvd nist
Published: Jun 16, 2003Modified: Apr 16, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack.

Affected (10)

Products: Apple: Safari · Kde: Konqueror Embedded, Kde · Redhat: Linux · +1 more
Show all products
Apple: Safari · Kde: Konqueror Embedded, Kde · Redhat: Linux · Turbolinux: Turbolinux Server, Turbolinux Workstation
Apple
1 product
Safari
Kde
2 products
Konqueror Embedded
Kde
Redhat
1 product
Linux
Turbolinux
2 products
Turbolinux Server
Turbolinux Workstation
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Apple
Safari
Version 1.0 beta2
Safari
Version 1.0 beta
Konqueror Embedded
Version 0.1
Configuration B
7 vulnerable
Vulnerable SoftwareAffected Versions
Kde
Up to 2.2.2
Redhat
Linux
Version 7.1
Linux
Version 7.2
Turbolinux
Turbolinux Server
Version 7.0
Turbolinux Server
Version 8.0
Turbolinux
Turbolinux Workstation
Version 7.0
Turbolinux Workstation
Version 8.0

References (16)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.