CVE-2013-0240

NONECVSS 0.0

0.0

Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle attackers to obtain sensitive information such as credentials by sniffing the network.

🔗 References (20)

secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-02/msg00046.html
secalert@redhathttp://secunia.com/advisories/51976
secalert@redhathttp://secunia.com/advisories/52791
secalert@redhathttp://ubuntu.com/usn/usn-1779-1
secalert@redhathttps://bugzilla.gnome.org/show_bug.cgi?id=693214
secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=894352
secalert@redhathttps://git.gnome.org/browse/gnome-online-accounts/commit/?h=gnome-3-6&id=ecad8142e9ac519b9fc74b96dcb5531052bbffe1
secalert@redhathttps://git.gnome.org/browse/gnome-online-accounts/commit/?id=bc10fdb68f75f8be84eb698ada08743b9c7c248f
secalert@redhathttps://git.gnome.org/browse/gnome-online-accounts/commit/?id=edde7c63326242a60a075341d3fea0be0bc4d80e
secalert@redhathttps://mail.gnome.org/archives/gnome-announce-list/2013-March/msg00007.html
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-updates/2013-02/msg00046.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/51976
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/52791
af854a3a-2127-422b-91ae-364da2661108http://ubuntu.com/usn/usn-1779-1
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.gnome.org/show_bug.cgi?id=693214

Is Your Infrastructure Affected by CVE-2013-0240?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-0240

📅 Published

🔄 Last Modified

🔗 References (20)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-0240?