Hitachi Web Server 01-00 through 03-00-01, as used by certain Cosminexus products, does not properly validate SSL client certificates, which might allow remote attackers to spoof authentication via a client certificate with a forged signature.Referenceshttp://osvdb.org/42026http://www.hitachi-support.com/security_e/vuls_e/HS07-034_e/index-e.htmlhttp://secunia.com/advisories/27421http://www.vupen.com/english/advisories/2007/3666http://www.securityfocus.com/bid/26271
