Vulnerability Details CVE-2011-3366
Rekonq 0.7.0 and earlier does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name (CN) of a certificate via rich text.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.0%
CVSS Severity
CVSS v2 Score 4.3
References
- http://www.kde.org/info/security/advisory-20111003-1.txt
- http://www.securityfocus.com/archive/1/520041
- https://bugzilla.redhat.com/show_bug.cgi?id=743194
- http://www.kde.org/info/security/advisory-20111003-1.txt
- http://www.securityfocus.com/archive/1/520041
- https://bugzilla.redhat.com/show_bug.cgi?id=743194
Products affected by CVE-2011-3366
-
cpe:2.3:a:adjam:rekonq:0.0.1
-
cpe:2.3:a:adjam:rekonq:0.0.2
-
cpe:2.3:a:adjam:rekonq:0.0.3
-
cpe:2.3:a:adjam:rekonq:0.0.4
-
cpe:2.3:a:adjam:rekonq:0.1
-
cpe:2.3:a:adjam:rekonq:0.1.0
-
cpe:2.3:a:adjam:rekonq:0.1.95
-
cpe:2.3:a:adjam:rekonq:0.1.98
-
cpe:2.3:a:adjam:rekonq:0.2.0
-
cpe:2.3:a:adjam:rekonq:0.2.90
-
cpe:2.3:a:adjam:rekonq:0.3.0
-
cpe:2.3:a:adjam:rekonq:0.3.90
-
cpe:2.3:a:adjam:rekonq:0.4.0
-
cpe:2.3:a:adjam:rekonq:0.4.90
-
cpe:2.3:a:adjam:rekonq:0.4.95
-
cpe:2.3:a:adjam:rekonq:0.5.0
-
cpe:2.3:a:adjam:rekonq:0.5.80
-
cpe:2.3:a:adjam:rekonq:0.6.0
-
cpe:2.3:a:adjam:rekonq:0.6.1
-
cpe:2.3:a:adjam:rekonq:0.6.80
-
cpe:2.3:a:adjam:rekonq:0.6.85
-
cpe:2.3:a:adjam:rekonq:0.6.95
-
cpe:2.3:a:adjam:rekonq:0.7.0