A logic bug in the handling of large allocations would allow
exceptionally large allocations to be reported as successful, without
actually allocating the requested memory. This may allow attackers to
bypass security checks and obtain control of arbitrary memory.

OSVersionArchitecturePackageVersionFilename
anyanyanynspr< 4.10.10-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
any	any	any	nspr	< 4.10.10-1	UNKNOWN

References

www.mail-archive.com/[email protected]/msg12386.html

access.redhat.com/security/cve/CVE-2015-7183

openvas 30

osv 1

cve 1

prion 1

nessus 39

debiancve 1

ubuntu 3

debian 3

ubuntucve 1

ibm 6

redhat 3

veracode 2

slackware 1

f5 2

centos 2

oraclelinux 2

amazon 1

mozilla 1

symantec 1

kaspersky 2

mageia 1

suse 5

chrome 1

archlinux 1

freebsd 1

gentoo 2

oracle 4

openvas

Ubuntu Update for nspr USN-2790-1

2015-11-05 00:00:00

Debian Security Advisory DSA 3406-1 (nspr - security update)

2015-11-25 00:00:00

Debian Security Advisory DSA 3406-1 (nspr - security update)

2015-11-25 00:00:00

osv

nspr - security update

2015-11-19 00:00:00

cve

CVE-2015-7183

2015-11-05 05:59:00

prion

Integer overflow

2015-11-05 05:59:00

nessus

Ubuntu 14.04 LTS : NSPR vulnerability (USN-2790-1)

2015-11-05 00:00:00

Debian DSA-3406-1 : nspr - security update

2015-11-30 00:00:00

Debian DLA-344-1 : nspr security update

2015-11-20 00:00:00

debiancve

CVE-2015-7183

2015-11-05 05:59:00

ubuntu

NSPR vulnerability

2015-11-04 00:00:00

Thunderbird vulnerabilities

2015-12-01 00:00:00

Firefox vulnerabilities

2015-11-04 00:00:00

debian

[SECURITY] [DLA 344-1] nspr security update

2015-11-19 21:18:36

[SECURITY] [DSA 3406-1] nspr security update

2015-11-25 21:51:42

[SECURITY] [DSA 3393-1] iceweasel security update

2015-11-04 18:41:55

ubuntucve

CVE-2015-7183

2015-11-04 00:00:00

ibm

Security Bulletin: IBM Security Access Manager for Web is affected by Network Security Services (NSS) vulnerabilities (CVE-2015-7181, CVE-2015-7182, CVE-2015-7183)

2018-06-16 21:38:59

Security Bulletin: Vulnerabilities in Network Security (NSS) and Netscape Portable Runtime (NSPR) affect IBM SAN Volume Controller and Storwize Family (CVE-2015-7181 CVE-2015-7182 CVE-2015-7183)

2023-03-29 01:48:02

Security Bulletin: IBM Security Access Manager for Mobile is affected by Network Security Services (NSS) vulnerabilities (CVE-2015-7181, CVE-2015-7182, CVE-2015-7183)

2018-06-16 21:38:59

redhat

(RHSA-2015:2068) Critical: nss, nss-util, and nspr security update

2015-11-18 00:00:00

(RHSA-2015:1981) Critical: nss, nss-util, and nspr security update

2015-11-04 00:00:00

(RHSA-2015:1980) Critical: nss and nspr security update

2015-11-04 00:00:00

veracode

Arbitrary Code Execution

2019-05-02 05:43:34

Arbitrary Code Execution

2019-05-02 05:43:35

slackware

[slackware-security] mozilla-nss

2015-11-06 17:08:58

K31372672 : Mozilla NSS vulnerabilities CVE-2015-7181, CVE-2015-7182, and CVE-2015-7183

2015-12-09 00:00:00

SOL31372672 - Mozilla NSS vulnerabilities CVE-2015-7181, CVE-2015-7182, and CVE-2015-7183

2015-12-09 00:00:00

centos

nspr, nss security update

2015-11-04 11:34:51

nspr, nss security update

2015-11-04 15:57:04

oraclelinux

nss and nspr security update

2015-11-04 00:00:00

nss, nss-util, and nspr security update

2015-11-04 00:00:00

amazon

Critical: nspr, nss-util, nss, jss

2015-11-05 01:58:00

mozilla

NSS and NSPR memory corruption issues — Mozilla

2015-11-03 00:00:00

symantec

SA119 : Multiple NSS Vulnerabilities

2016-03-22 08:00:00

kaspersky

KLA10744 Multiple vulnerabilities in Oracle VM VirtualBox

2016-02-21 00:00:00

KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

2015-11-03 00:00:00

mageia

Updated firefox, nspr, nss packages fix security vulnerability

2015-11-04 21:03:05

suse

Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)

2015-11-06 17:11:17

Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)

2015-11-12 17:11:49

Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)

2015-11-12 20:10:40

chrome

Stable Channel Update

2015-10-13 00:00:00

archlinux

firefox: multiple issues

2015-11-04 00:00:00

freebsd

mozilla -- multiple vulnerabilities

2015-11-03 00:00:00

gentoo

Mozilla Products: Multiple vulnerabilities

2015-12-30 00:00:00

Mozilla Products: Multiple vulnerabilities

2016-05-31 00:00:00

oracle

Oracle Critical Patch Update Advisory - April 2016

2016-04-19 00:00:00

Oracle Critical Patch Update - July 2016

2016-07-19 00:00:00

Oracle Critical Patch Update - January 2016

2016-01-19 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.088 Low

EPSS

Percentile

93.9%

JSON

Related for ASA-201511-4