6.5 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.4%
Apple Safari before 4.0 does not properly check for revoked Extended Validation (EV) certificates, which makes it easier for remote attackers to trick a user into accepting an invalid certificate.
lists.apple.com/archives/security-announce/2009/jun/msg00002.html
osvdb.org/54982
secunia.com/advisories/35379
support.apple.com/kb/HT3613
www.securityfocus.com/bid/35260
www.securityfocus.com/bid/35353
www.securitytracker.com/id?1022346
www.vupen.com/english/advisories/2009/1522