Server Certificate Validation Vulnerability in Internet Explorer 5.5 and Earlier

Server Certificate Validation Vulnerability in Internet Explorer 5.5 and Earlier

CVE-2001-0338 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

Internet Explorer 5.5 and earlier does not properly validate digital certificates when Certificate Revocation List (CRL) checking is enabled, which could allow remote attackers to spoof trusted web sites, aka the "Server certificate validation vulnerability."

Learn more about our Web App Pen Testing.