CVE-2012-5524
Published Feb 8, 2014
Last updated 11 years ago
Overview
- Description
- The _ssl_verify_callback function in tls_nb.py in Gajim before 0.15.3 does not properly verify SSL certificates, which allows remote attackers to conduct man-in-the-middle (MITM) attacks and spoof servers via an arbitrary certificate from a trusted CA.
- Source
- secalert@redhat.com
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-20
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gajim:gajim:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EC697A3E-D289-4EAA-BEB1-50243DEC70B5",
"versionEndIncluding": "0.15.2"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "380A6FF5-61CF-49E8-B186-234887A4AAE9"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "867A9CBE-A1BD-4BBE-94CA-482DD25E128C"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A0384DE-8ACB-4DE4-A552-92EC3725C3E3"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0841132E-16B8-4BC2-AEAD-3C36CF818D0C"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BA7B00AB-F113-4EC5-B5F5-582D7E062859"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "304C78CD-BDFC-4333-9FF2-E14C03DB6856"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9E346EC3-2B7E-49DE-B5F0-32375BA68277"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7ADAF95F-8CBA-49DD-8873-4157A2EDA5BA"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8CA08222-A713-4B86-AEE6-84DD0CD500F2"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8D892C8F-AA49-4EBD-8998-50501D052E3D"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B1639A77-0047-4C83-9027-DE5F48F37BBC"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C98CE8D-8BA0-4AD0-AC61-6A955FE25E77"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0DB29408-B04B-4AE8-B426-B76550516AD7"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "425CF4D9-9B13-4334-8F98-989FB32550D3"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.8.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D358E094-AB6E-4802-B917-DFD30447A389"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F13C707F-0418-48F1-A8F6-97D85498B755"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.9.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E2FC0291-4E6B-4331-A554-3677A0A8A7A8"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "558A468C-59C6-41A7-8498-69D570D1A9A1"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.10.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1F42B57-BB61-4F59-B352-A2941FD48EA5"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "696B838C-F3C2-4A1B-A25E-A1913FD9B137"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.11.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9FC663CF-BBA3-479F-8EE8-5B3D54CC5210"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.11.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "118A63F7-A760-4A93-8690-3C83520EA9D7"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.11.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F8B31F13-E9A8-43C9-BB85-0DDF99B058C5"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.11.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CB235BDE-CFF1-4F84-A017-A6351B1EB475"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "23654F1F-7098-4356-B64B-CF159CE3338C"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0AFE387E-D303-420C-BEE4-B73FFEEFF229"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EA31CEAD-AAB5-4B59-824D-00BC85C4F587"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE0FEF18-FEB5-41D2-A249-F144FF399385"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C79FA382-4FB4-4A90-AE50-A941A8135A7D"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F5CD4800-B39B-407A-A5AA-0B19568A34A4"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12.5:alpha1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE6AC1C1-FC28-438C-9251-1BEABD031027"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.12.5:beta1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56939C0E-D6E4-48CA-BFD8-4371967D7896"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B20A8CA3-B8FB-407D-9F1C-8AA0E406E7CD"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.13.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B3F03392-8E65-4072-B18D-A33D414719BB"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.13.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "61E38997-A725-4D77-883C-B7BFA7A1DD0C"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.13.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F1FA7E1F-9FD3-46B8-BD42-DBA594F78694"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.13.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "54229127-108A-422B-AC3E-0EF3237ABB3B"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1544C901-A830-407E-B407-E67C94B4BBB1"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.14.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7B798A67-20E8-44F8-B4A4-136B60B58034"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.14.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B498FF1-33EC-4562-9E60-5CD850ECB728"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.14.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "569950C0-739F-4F5E-9E8F-79F0BFF0EC15"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.14.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "42943B53-EB2C-4CFD-8107-36CEAAF4EB73"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7444EF11-27AE-43BF-9DA4-4A0675E81A73"
},
{
"criteria": "cpe:2.3:a:gajim:gajim:0.15.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B9C83A89-7790-4A52-A54E-975090A99F94"
}
],
"operator": "OR"
}
]
}
]