CVE-2005-2395

Priority
Description
Mozilla Firefox 1.0.4 and 1.0.5 does not choose the challenge with the
strongest authentication scheme available as required by RFC2617, which
might cause credentials to be sent in plaintext even if an encrypted
channel is available.
Notes
Package
Upstream:needs-triage
More Information

Updated: 2020-01-29 19:09:54 UTC (commit 40f18bf14da5fb50662e1f861ea594a462b207fe)