Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Python Data Processing Errors Vulnerability - CVE-2013-7440 - Vulnerability Database
Python

Python Data Processing Errors Vulnerability - CVE-2013-7440

Medium
Reference: CVE-2013-7440
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-7440
Title: Python Data Processing Errors Vulnerability
Overview:

The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.