Vulnerability in Apple Safari
CVE-2003-0355
Safari 1.0 Beta 2 (v73) and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates.
EPSS: 0.008 (50.7th percentile) — read the EPSS interpretation.
Affected products
- Apple Safari — versions 1.0
- Kde Konqueror_embedded
- N/a — versions n/a
References
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)