Mozilla Products: Incorrect IDNA domain name matching for wildcard certificates - mfsa2014-45 (Mac OS X)ID: oval:org.secpod.oval:def:81860 | Date: (C)2022-07-05 (M)2024-02-19 |
Class: VULNERABILITY | Family: macos |
The host is installed with Mozilla SeaMonkey before 2.26 or Mozilla Firefox is less than 29.0: Security researcher Christian Heimes reported that the Network Security Services (NSS) library does not handle IDNA domain prefixes according to RFC 6125 for wildcard certificates. This leads to improper wildcard matching of domains when they should not be matched in compliance with the specification.
Platform: |
Apple Mac OS 14 |
Apple Mac OS 13 |
Apple Mac OS 11 |
Apple Mac OS 12 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.15 |
Product: |
Mozilla SeaMonkey |
Mozilla Firefox |