CVE-2006-2703 Information

Description

The RedCarpet command-line client (rug) does not verify SSL certificates from a server which allows remote attackers to read network traffic and execute commands via a man-in-the-middle (MITM) attack.

Reference

http://secunia.com/advisories/20396 http://www.securityfocus.com/archive/1/435491/100/0/threaded http://www.securityfocus.com/bid/18193