Unrated severityNVD Advisory· Published Feb 2, 2011· Updated Jun 16, 2026
CVE-2011-0738
CVE-2011-0738
Description
MyProxy 5.0 through 5.2, as used in Globus Toolkit 5.0.0 through 5.0.2, does not properly verify the (1) hostname or (2) identity in the X.509 certificate for the myproxy-server, which allows remote attackers to spoof the server and conduct man-in-the-middle (MITM) attacks via a crafted certificate when executing (a) myproxy-logon or (b) myproxy-get-delegation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- Range: 5.0 through 5.2
- Range: 5.0.0 through 5.0.2
Patches
Vulnerability mechanics
References
10- lists.globus.org/pipermail/security-announce/2011-January/000018.htmlnvdPatch
- grid.ncsa.illinois.edu/myproxy/security/myproxy-adv-2011-01.txtnvdVendor Advisory
- secunia.com/advisories/42972nvdVendor Advisory
- secunia.com/advisories/43103nvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2011-January/053461.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-January/053473.htmlnvd
- osvdb.org/70494nvd
- www.securityfocus.com/bid/45916nvd
- www.vupen.com/english/advisories/2011/0227nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/64830nvd
News mentions
0No linked articles in our index yet.