3 matches found
CVE-2017-15528
Prior to v 7.6, the Install Norton Security INS product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target...
Spoofing
Prior to v 7.6, the Install Norton Security INS product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target...
CVE-2017-15528
CVE-2017-15528 affects the Norton Security for Mac installer (pre-7.6). The vulnerability is a failure to properly validate SSL certificates during HTTPS connections, enabling a man‑in‑the‑middle where an attacker can spoof a valid server and modify or spoof content retrieved over HTTPS. The prac...