SecuritySpace - CVE-2013-1651

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2013-1651

Description: OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof update servers and install arbitrary software via a crafted certificate.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-1651
Bugtraq: 20130313 Open-Xchange Security Advisory 2013-03-13 (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2013-03/0075.html

CVE ID:	CVE-2013-1651
Description:	OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof update servers and install arbitrary software via a crafted certificate.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2013-1651 Bugtraq: 20130313 Open-Xchange Security Advisory 2013-03-13 (Google Search) http://archives.neohapsis.com/archives/bugtraq/2013-03/0075.html