Versions of Mozilla Thunderbird prior to 2.0.0.23 are affected by an SSL spoofing attack. The client can be fooled into trusting a malicious SSL server certificate with a null character in the host name. (MFSA 2009-42)
Binary data 5353.prm
Vendor | Product | Version | CPE |
---|---|---|---|
mozilla | thunderbird | cpe:/a:mozilla:thunderbird |