Lucene search
HistoryMay 26, 2000 - 4:00 a.m.
CVE-2000-0517
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.004
Percentile
73.8%
Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a legitimate web site by compromising that site’s DNS information.
Affected configurations
Node
netscapecommunicatorMatch4.0
ORnetscapecommunicatorMatch4.5
ORnetscapecommunicatorMatch4.6
ORnetscapecommunicatorMatch4.7
ORnetscapecommunicatorMatch4.51
ORnetscapecommunicatorMatch4.61
ORnetscapecommunicatorMatch4.72
ORnetscapecommunicatorMatch4.73
| Vendor | Product | Version | CPE |
|---|---|---|---|
| netscape | communicator | 4.0 | cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:* |
| netscape | communicator | 4.5 | cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:* |
| netscape | communicator | 4.6 | cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:* |
| netscape | communicator | 4.7 | cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:* |
| netscape | communicator | 4.51 | cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:* |
| netscape | communicator | 4.61 | cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:* |
| netscape | communicator | 4.72 | cpe:2.3:a:netscape:communicator:4.72:*:*:*:*:*:*:* |
| netscape | communicator | 4.73 | cpe:2.3:a:netscape:communicator:4.73:*:*:*:*:*:*:* |
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.004
Percentile
73.8%
Related for NVD:CVE-2000-0517