Mozilla Browser < 1.7.2 Non-FQDN SSL Certificate Spoofing

medium Log Correlation Engine Plugin ID 801292

Synopsis

N/A

Description

The remote host is using a version of Mozilla that is vulnerable to a SSL spoofing issue that may allow a rogue web server to spoof a trusted certificate from a third party web site using non-fully qualified domain name.

Solution

Upgrade to version 1.7.2 or higher.