Lucene search

[email protected]NVD:CVE-2000-0406

HistoryMay 10, 2000 - 4:00 a.m.

CVE-2000-0406

2000-05-1004:00:00

[email protected]

web.nvd.nist.gov

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.006

Percentile

78.4%

JSON

Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the “Acros-Suencksen SSL” vulnerability.

Affected configurations

Nvd

Node

netscapecommunicatorMatch4.0

netscapecommunicatorMatch4.05

netscapecommunicatorMatch4.5

netscapecommunicatorMatch4.5_beta

netscapecommunicatorMatch4.06

netscapecommunicatorMatch4.6

netscapecommunicatorMatch4.07

netscapecommunicatorMatch4.7

netscapecommunicatorMatch4.51

netscapecommunicatorMatch4.61

netscapecommunicatorMatch4.72

VendorProductVersionCPE
netscapecommunicator4.0cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:*
netscapecommunicator4.05cpe:2.3:a:netscape:communicator:4.05:*:*:*:*:*:*:*
netscapecommunicator4.5cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:*
netscapecommunicator4.5_betacpe:2.3:a:netscape:communicator:4.5_beta:*:*:*:*:*:*:*
netscapecommunicator4.06cpe:2.3:a:netscape:communicator:4.06:*:*:*:*:*:*:*
netscapecommunicator4.6cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:*
netscapecommunicator4.07cpe:2.3:a:netscape:communicator:4.07:*:*:*:*:*:*:*
netscapecommunicator4.7cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:*
netscapecommunicator4.51cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:*
netscapecommunicator4.61cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
netscape	communicator	4.0	cpe:2.3:a:netscape:communicator:4.0:::::::*
netscape	communicator	4.05	cpe:2.3:a:netscape:communicator:4.05:::::::*
netscape	communicator	4.5	cpe:2.3:a:netscape:communicator:4.5:::::::*
netscape	communicator	4.5_beta	cpe:2.3:a:netscape:communicator:4.5_beta:::::::*
netscape	communicator	4.06	cpe:2.3:a:netscape:communicator:4.06:::::::*
netscape	communicator	4.6	cpe:2.3:a:netscape:communicator:4.6:::::::*
netscape	communicator	4.07	cpe:2.3:a:netscape:communicator:4.07:::::::*
netscape	communicator	4.7	cpe:2.3:a:netscape:communicator:4.7:::::::*
netscape	communicator	4.51	cpe:2.3:a:netscape:communicator:4.51:::::::*
netscape	communicator	4.61	cpe:2.3:a:netscape:communicator:4.61:::::::*

Rows per page:

1-10 of 111

References

www.acrossecurity.com/aspr/ASPR-2000-04-06-1-PUB.txt

www.cert.org/advisories/CA-2000-05.html

www.redhat.com/support/errata/RHSA-2000-028.html

www.securityfocus.com/bid/1188

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.006

Percentile

78.4%

JSON

Related for NVD:CVE-2000-0406

cve1 cvelist1