Oval Definition:oval:org.mitre.oval:def:19108
Revision Date:2013-12-23Version:27
Title:net/socket/ssl_client_socket_nss.cc in the TLS implementation in Google Chrome before 31.0.1650.48 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation
Description:net/socket/ssl_client_socket_nss.cc in the TLS implementation in Google Chrome before 31.0.1650.48 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which might allow remote web servers to interfere with trust relationships by renegotiating a session.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2013-6628
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Google Chrome
Definition Synopsis
  • Google Chrome is installed
  • AND Check if the version of Google Chrome is less than 31.0.1650.48
  • BACK