Apple · Safari · CVE-2006-4390
**Name of the Vulnerable Software and Affected Versions**
Apple Mac OS X versions 10.3.9 through 10.4.7
**Description**
The issue allows remote SSL sites to appear as trusted sites by using encryption without authentication. This can cause the lock icon in Safari to be displayed even when the site's identity cannot be trusted.
**Recommendations**
For Apple Mac OS X versions 10.3.9 through 10.4.7, update to a version that includes a fix for this issue to ensure proper authentication of SSL sites.