Internet Explorer 4.x and 5.x does not properly re-validate an SSL certificate if the user establishes a new SSL session with the same server during the same Internet Explorer session, aka one of two different "SSL Certificate Validation" vulnerabilities.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/1309 | Patch Vendor Advisory |
http://www.cert.org/advisories/CA-2000-10.html | Patch Third Party Advisory US Government Resource |
http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/4627 | |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-039 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2000-06-04 21:00
Updated : 2021-07-22 06:53
NVD link : CVE-2000-0519
Mitre link : CVE-2000-0519
JSON object : View
CWE
Products Affected
microsoft
- internet_explorer
- ie