What is the severity of CVE-2012-5821?

CVE-2012-5821 has a medium severity rating due to its potential for man-in-the-middle attacks.

How do I fix CVE-2012-5821?

To fix CVE-2012-5821, upgrade Lynx to the latest version that resolves the certificate verification issue.

Which versions of Lynx are affected by CVE-2012-5821?

CVE-2012-5821 affects all versions of Lynx prior to the patched releases that include proper certificate verification.

What types of attacks can CVE-2012-5821 enable?

CVE-2012-5821 can enable man-in-the-middle attacks by allowing an attacker to spoof SSL servers with a malicious certificate.

Is CVE-2012-5821 specific to any operating system?

CVE-2012-5821 primarily affects Lynx on various Ubuntu Linux versions, including 10.04, 11.10, 12.04, and 12.10.

Vulnerability/
CVE-2012-5821

medium

5.9

CWE

310 295

4/11/2012

6/8/2024

CVE-2012-5821

First published: Sun Nov 04 2012(Updated: )

Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Lynx Lynx
Ubuntu Linux	=10.04
Ubuntu Linux	=11.10
Ubuntu Linux	=12.04
Ubuntu Linux	=12.10

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-5821?
CVE-2012-5821 has a medium severity rating due to its potential for man-in-the-middle attacks.
How do I fix CVE-2012-5821?
To fix CVE-2012-5821, upgrade Lynx to the latest version that resolves the certificate verification issue.
Which versions of Lynx are affected by CVE-2012-5821?
CVE-2012-5821 affects all versions of Lynx prior to the patched releases that include proper certificate verification.
What types of attacks can CVE-2012-5821 enable?
CVE-2012-5821 can enable man-in-the-middle attacks by allowing an attacker to spoof SSL servers with a malicious certificate.
Is CVE-2012-5821 specific to any operating system?
CVE-2012-5821 primarily affects Lynx on various Ubuntu Linux versions, including 10.04, 11.10, 12.04, and 12.10.

collector/nvd-index
agent/type
agent/author
agent/references
agent/weakness
agent/severity
agent/description
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/lynx
canonical/lynx lynx
vendor/canonical
canonical/ubuntu linux
version/ubuntu linux/10.04
version/ubuntu linux/11.10
version/ubuntu linux/12.04
version/ubuntu linux/12.10

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.