Apple · Safari · CVE-2009-1682
Name of the Vulnerable Software and Affected Versions:
Apple Safari versions prior to 4.0
Description:
The issue is related to the improper checking of revoked Extended Validation (EV) certificates. This makes it easier for remote attackers to trick a user into accepting an invalid certificate.
Recommendations:
For versions prior to 4.0, update to version 4.0 or later to resolve the issue.