CVE Vulnerabilities

CVE-2000-0406

Published: May 10, 2000 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the Acros-Suencksen SSL vulnerability.

Affected Software

Name Vendor Start Version End Version
Communicator Netscape 4.0 4.0
Communicator Netscape 4.05 4.05
Communicator Netscape 4.5 4.5
Communicator Netscape 4.5_beta 4.5_beta
Communicator Netscape 4.06 4.06
Communicator Netscape 4.6 4.6
Communicator Netscape 4.07 4.07
Communicator Netscape 4.7 4.7
Communicator Netscape 4.51 4.51
Communicator Netscape 4.61 4.61
Communicator Netscape 4.72 4.72

References