2012-11-04 22:00:00
mitre
PUBLISHED
Lynx does not verify that the servers certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function.