Описание
Apple Safari before 4.0 does not properly check for revoked Extended Validation (EV) certificates, which makes it easier for remote attackers to trick a user into accepting an invalid certificate.
Apple Safari before 4.0 does not properly check for revoked Extended Validation (EV) certificates, which makes it easier for remote attackers to trick a user into accepting an invalid certificate.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-1682
- http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
- http://osvdb.org/54982
- http://secunia.com/advisories/35379
- http://support.apple.com/kb/HT3613
- http://www.securityfocus.com/bid/35260
- http://www.securityfocus.com/bid/35353
- http://www.securitytracker.com/id?1022346
- http://www.vupen.com/english/advisories/2009/1522
EPSS
Процентиль: 59%
0.00387
Низкий
CVE ID
Связанные уязвимости
nvd
больше 16 лет назад
Apple Safari before 4.0 does not properly check for revoked Extended Validation (EV) certificates, which makes it easier for remote attackers to trick a user into accepting an invalid certificate.
EPSS
Процентиль: 59%
0.00387
Низкий