CVE-2011-0082

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions 4.0.x through 4.0.1

Description The issue is related to the X.509 certificate validation functionality, which does not properly implement single-session security exceptions. This might make it easier for remote attackers to spoof an SSL server via an untrusted certificate, potentially leading to local caching of documents from that server.

Recommendations For Mozilla Firefox versions 4.0.x through 4.0.1, update to a version that properly implements single-session security exceptions to resolve the issue.