CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
73.8%
Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a legitimate web site by compromising that site’s DNS information.
Vendor | Product | Version | CPE |
---|---|---|---|
netscape | communicator | 4.0 | cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:* |
netscape | communicator | 4.5 | cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:* |
netscape | communicator | 4.6 | cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:* |
netscape | communicator | 4.7 | cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:* |
netscape | communicator | 4.51 | cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:* |
netscape | communicator | 4.61 | cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:* |
netscape | communicator | 4.72 | cpe:2.3:a:netscape:communicator:4.72:*:*:*:*:*:*:* |
netscape | communicator | 4.73 | cpe:2.3:a:netscape:communicator:4.73:*:*:*:*:*:*:* |