low
2.6
CWE
NVD-CWE-Other
Advisory Published
CVE Published
Updated

CVE-2000-0519

First published: Mon Jun 05 2000(Updated: )

Internet Explorer 4.x and 5.x does not properly re-validate an SSL certificate if the user establishes a new SSL session with the same server during the same Internet Explorer session, aka one of two different "SSL Certificate Validation" vulnerabilities.

Credit: cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Microsoft Internet Explorer=5.0
Microsoft Internet Explorer=5.0.1
Microsoft Internet Explorer=5.0
Microsoft Internet Explorer=4.0.1
Microsoft Internet Explorer=4.0.1
Microsoft Internet Explorer=4.0
Microsoft Internet Explorer=4.0.1
Microsoft Internet Explorer=5.0.1
Microsoft Internet Explorer=5.0
Microsoft Internet Explorer=5.0.1
Microsoft Internet Explorer=5.0.1
Microsoft Internet Explorer=5.0
Microsoft Internet Explorer=4.0
Internet Explorer=4.0

Remedy

http://www.cert.org/advisories/CA-2000-10.html

Remedy

http://www.securityfocus.com/bid/1309

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2000-0519?

    CVE-2000-0519 is considered a moderate severity vulnerability due to its potential to allow attackers to bypass SSL certificate validation.

  • How do I fix CVE-2000-0519?

    To address CVE-2000-0519, you should upgrade to a newer, supported version of Internet Explorer that properly handles SSL certificate validation.

  • What software versions are affected by CVE-2000-0519?

    CVE-2000-0519 affects Internet Explorer versions 4.x and 5.x on various Windows operating systems including Windows 95, Windows 98, Windows NT, and Windows 2000.

  • What exploitation methods are associated with CVE-2000-0519?

    Exploitation of CVE-2000-0519 could allow a malicious server to present an invalid SSL certificate after a valid session has already been established.

  • Are there any workarounds for CVE-2000-0519?

    As a workaround for CVE-2000-0519, users can use alternative browsers that do not have this vulnerability until they can update Internet Explorer.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203