PT-2014-6405 · Filemaker · Filemaker Pro Advanced+1

Publicado

2014-09-22

·

Atualizado

2014-09-22

·

CVE-2014-5321

CVSS v2.0

5.8

Média

VetorAV:N/AC:M/Au:N/C:P/I:P/A:N
Name of the Vulnerable Software and Affected Versions FileMaker Pro versions prior to 13 FileMaker Pro Advanced versions prior to 13
Description The issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, as it does not verify X.509 certificates from SSL servers.
Recommendations For FileMaker Pro versions prior to 13, update to version 13 or later to resolve the issue. For FileMaker Pro Advanced versions prior to 13, update to version 13 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-310

Identificadores relacionados

CVE-2014-5321

Produtos afetados

Filemaker Pro
Filemaker Pro Advanced