CVE-2013-7144

Published: Aug 16, 2014Modified: May 6, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

LINE 3.2.1.83 and earlier on Windows and 3.2.1 and earlier on OS X does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Affected (2)

Products: Linecorp: Line

Linecorp

1 product

Line

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Linecorp Line	Up to 3.2.1.83

Running on/with	Platform Versions
Microsoft Windows	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Linecorp Line	Up to 3.2.1

Running on/with	Platform Versions
Apple Mac Os X	All versions

Related CWEs

CWE-310

References (2)

https://www.thaicert.or.th/papers/general/2013/pa2013ge010.html

Source: vultures@jpcert.or.jp

Exploit

https://www.thaicert.or.th/papers/general/2013/pa2013ge010.html

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

Timeline

No history available yet.