CVE-2010-4237

Published: 2019-10-29T19:15Z

Last Modified: 2024-11-21T01:20Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Mercurial before 1.6.4 fails to verify the Common Name field of SSL certificates which allows remote attackers who acquire a certificate signed by a Certificate Authority to perform a man-in-the-middle attack. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt