Mozilla Firefox < 1.7.2 Non-FQDN SSL Certificate Spoofing
Medium Nessus Network Monitor Plugin ID 1771
SynopsisThe remote host has a web browser installed that is vulnerable to certificate spoofing attacks.
DescriptionVersions of Mozilla Firefox prior to 1.7.2 are vulnerable to a SSL spoofing issue that may allow a rogue web server to spoof a trusted certificate from a third party web site using non-fully qualified domain name.
SolutionUpgrade to version 1.7.2 or higher.