PT-2000-1348 · Netscape · Netscape Communicator+1

Published

2000-05-10

Updated

2008-09-10

CVE-2000-0406

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Netscape Communicator versions prior to 4.73 Netscape Navigator version 4.07

Description The issue allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server. This is due to the improper validation of SSL certificates.

Recommendations For Netscape Communicator versions prior to 4.73, update to version 4.73 or later to resolve the issue. For Netscape Navigator version 4.07, consider disabling SSL connections until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0406

Affected Products

Netscape Communicator

Netscape Navigator

PT-2000-1348 · Netscape · Netscape Communicator+1

CVE-2000-0406

Related Identifiers

Affected Products

References · 5