Unrated severityNVD Advisory· Published Sep 24, 2002· Updated Jun 16, 2026
CVE-2002-0970
CVE-2002-0970
Description
The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9Patches
Vulnerability mechanics
References
11- www.debian.org/security/2002/dsa-155nvdPatchVendor Advisory
- www.securityfocus.com/bid/5410nvdExploitPatchVendor Advisory
- ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-047.0.txtnvd
- archives.neohapsis.com/archives/bugtraq/2002-08/0170.htmlnvd
- distro.conectiva.com.br/atualizacoes/nvd
- marc.infonvd
- www.kde.org/info/security/advisory-20020818-1.txtnvd
- www.mandrakesoft.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2002-220.htmlnvd
- www.redhat.com/support/errata/RHSA-2002-221.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/9776nvd
News mentions
0No linked articles in our index yet.