VULHUB ™

Apple Safari web browser fails to correctly validate theCommon Name (CN) field for X.509 certificates when a SSL/TLS session is negotiated. Safari is not able to detect cases where the CN does not match the hostname of the server. This could lead to a variety of attacks, including the possibility of allowing a malicious server to masquerade as a trusted server. It has also been reported that Safari does not have a feature which allows users to inspect a certificate manually.

Apple Safari web browser fails to correctly validate theCommon Name (CN) field for X.509 certificates when a SSL/TLS session is negotiated. Safari is not able to detect cases where the CN does not match the hostname of the server. This could lead to a variety of attacks, including the possibility of allowing a malicious server to masquerade as a trusted server. It has also been reported that Safari does not have a feature which allows users to inspect a certificate manually.