#VU30720 Improper Certificate Validation in Mercurial - CVE-2010-4237

Cybersecurity Help s.r.o.

Published: 2019-10-29 | Updated: 2020-07-17

Vulnerability identifier: #VU30720

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2010-4237

CWE-ID: CWE-295

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Mercurial
Client/Desktop applications / Other client software

Vendor: Mercurial

Description

The vulnerability allows a remote non-authenticated attacker to manipulate data.

Mercurial before 1.6.4 fails to verify the Common Name field of SSL certificates which allows remote attackers who acquire a certificate signed by a Certificate Authority to perform a man-in-the-middle attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Mercurial: 1.6.1 - 1.6.3

External links
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598841
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4237
https://bz.mercurial-scm.org/show_bug.cgi?id=2407
https://security-tracker.debian.org/tracker/CVE-2010-4237

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Improper Certificate Validation in Mercurial Mercurial