First published: Fri Nov 22 2013(Updated: )
Kingsoft KDrive Personal before 1.21.0.1880 on Windows does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Kingsoft Kdrive | <=1.21.0.1878 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.