FreeBSD : mozilla -- built-in CA certificates may be overridden (8d823883-0ca9-11d9-8a8a-000c41e2cdad)
Medium Nessus Plugin ID 19024
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionUnder some situations, Mozilla will automatically import a certificate from an email message or web site. This behavior can be used as a denial-of-service attack: if the certificate has a distinguished name (DN) identical to one of the built-in Certificate Authorities (CAs), then Mozilla will no longer be able to certify sites with certificates issued from that CA.
SolutionUpdate the affected packages.