CVE-2002-1471

Description

The camel component for Ximian Evolution 1.0.x and earlier does not verify certificates when it establishes a new SSL connection after previously verifying a certificate, which could allow remote attackers to monitor or modify sessions via a man-in-the-middle attack.

Affected packages (1)

• Debian/evolutionfrom 0, < 1.2.0-1

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2002-1471