|
|
CVE Reference: CVE-2008-5124 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-5124 |
|
|
Description: JSCAPE Secure FTP Applet 4.8.0 and earlier does not ask the user to verify a new or mismatched SSH host key, which makes it easier for remote attackers to perform man-in-the-middle attacks. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/43300 ST 1020346 SREASON http://securityreason.com/securityalert/4606 SAID Secunia Advisory: SA30822 CONFIRM http://www.jscape.com/sftpapplet/docs/HTML/index.html?introhistory.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/493652/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/493569/100/0/threaded BID 29882 |
|
| Return to the previous page. |
