CVE-2000-0517 Information

Description

Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site which could allow remote attackers to spoof a legitimate web site by compromising that site’s DNS information.

Reference

http://www.cert.org/advisories/CA-2000-08.html http://www.securityfocus.com/bid/1260 https://exchange.xforce.ibmcloud.com/vulnerabilities/4550