CVE-2000-0517
Published May 26, 2000
Last updated 7 years ago
Overview
- Description
- Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a legitimate web site by compromising that site's DNS information.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "209C7BB1-EFDF-43AB-9FB6-DF67465DEAEF"
},
{
"criteria": "cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E9A5461-B0F2-49DB-A69C-3D2D27709647"
},
{
"criteria": "cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "529E3F71-6016-461D-A162-0DBDD5505389"
},
{
"criteria": "cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "38FD74F5-12ED-4049-B06F-0F22A0254C0F"
},
{
"criteria": "cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "918BE44C-8D64-4040-BC74-802AA3FA4E10"
},
{
"criteria": "cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6AA534C4-9411-44EC-AA34-2287C79AD235"
},
{
"criteria": "cpe:2.3:a:netscape:communicator:4.72:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A4E8588-A941-4759-B41C-00F193F2C63B"
},
{
"criteria": "cpe:2.3:a:netscape:communicator:4.73:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3E48C051-EB45-4262-86C2-2333FD5C7745"
}
],
"operator": "OR"
}
]
}
]