CVEs-PoC/2011/CVE-2011-0228.md at main

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-02-13 03:02:49 +00:00

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

1021 B

Raw Permalink Blame History

CVE-2011-0228

Description

The Data Security component in Apple iOS before 4.2.10 and 4.3.x before 4.3.5 does not check the basicConstraints parameter during validation of X.509 certificate chains, which allows man-in-the-middle attackers to spoof an SSL server by using a non-CA certificate to sign a certificate for an arbitrary domain.

POC

Reference

http://securityreason.com/securityalert/8361

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/CVEDB/PoC-List
https://github.com/CVEDB/awesome-cve-repo
https://github.com/jan0/isslfix
https://github.com/meetlight942/PentesterLab-Intercept-CVE-2011-0228
https://github.com/n0-traces/cve_monitor

1021 B Raw Permalink Blame History

CVE-2011-0228

Description

POC

Reference

Github

1021 B

Raw Permalink Blame History