New Search

Mozilla CA Certificate DoS

oval:org.mitre.oval:def:3134

Mozilla 1.5 through 1.7 allows a CA certificate to be imported even when their DN is the same as that of the built-in CA root certificate which allows remote attackers to cause a denial of service to SSL pages because the malicious certificate is treated as invalid.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 8
Class:
vulnerability
Reference(s):
  • CVE-2004-0758
Product(s):
  • mozilla