CVE-2007-6590 (Firefox, Mozilla, SeaMonkey, Netscape) |
|
| BugsAlert Home > CVE-2007-6590 (Firefox, Mozilla, SeaMonkey, Netscape) | |
|
Mozilla 1.9 M8 and earlier, Mozilla Firefox 2, SeaMonkey 1.1.5, Netscape 9.0, and other Mozilla-based web browsers, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regard the certificate as also accepted for all domain names in subjectAltName:dNSName fields, which makes it easier for remote attackers to trick a user into accepting an invalid certificate for a spoofed web site. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6590 Learn more about CVE-2007-6590 (Firefox, Mozilla, SeaMonkey, Netscape) |
|
| Tags: cve-2007-6590 firefox mozilla seamonkey netscape | |
Related Items |
|
|
Neil Deakin: Focus?
|
|
|
BusinessWeek website infected by hackers
|
|
|
CVE-2008-1952 (xen_para_virtualized_frame_buffer)
|
|
|
TROJ_VUNDO.JFZ
|
|
|
FrSIRT - SurgeMail IMAP Command Handling Denial of Service Vulnerability
|
|
|
CVE-2008-3581 (k-links)
|
|
|
ping Dusty : scan under each username?
|
|
