PT-2013-3663 · Filemaker · Filemaker Pro Advanced+1

Publicado

2013-06-10

·

Atualizado

2014-03-05

·

CVE-2013-2319

CVSS v2.0

5.8

Média

VetorAV:N/AC:M/Au:N/C:P/I:P/A:N
Name of the Vulnerable Software and Affected Versions FileMaker Pro versions prior to 12 FileMaker Pro Advanced versions prior to 12
Description The issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, as it does not verify X.509 certificates from SSL servers.
Recommendations For FileMaker Pro versions prior to 12, update to version 12 or later to resolve the issue. For FileMaker Pro Advanced versions prior to 12, update to version 12 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-310

Identificadores relacionados

CVE-2013-2319

Produtos afetados

Filemaker Pro
Filemaker Pro Advanced