Lucene search
Mozilla FoundationMFSA2014-12HistoryFeb 04, 2014 - 12:00 a.m.
NSS ticket handling issues — Mozilla
2014-02-0400:00:00
Mozilla Foundation
www.mozilla.org
24
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.7%
Mozilla developer Brian Smith and security researchers Antoine Delignat-Lavaud and Karthikeyan Bhargavan of the Prosecco research team at INRIA Paris reported issues with ticket handling in the Network Security Services (NSS) libraries. These have been addressed in the NSS 3.15.4 release, shipping on affected platforms.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox | lt | 27 | |
| firefox esr | lt | 24.3 | |
| seamonkey | lt | 2.24 | |
| thunderbird | lt | 24.3 |
Related
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2014-12) - Linux
2021-11-11 00:00:00
CentOS Update for nss CESA-2014:1246 centos5
2014-10-01 00:00:00
Oracle: Security Advisory (ELSA-2014-1246)
2015-10-06 00:00:00
redhat
redhat
nessus
nessus
CentOS 5 : nss (CESA-2014:1246)
2014-10-01 00:00:00
Oracle Linux 5 : nspr / nss (ELSA-2014-1246)
2014-09-18 00:00:00
centos
centos
nss security update
2014-09-30 11:21:57
nspr, nss security update
2014-07-23 02:49:51
seebug
seebug
Mozilla Network Security Services释放后重利用内存破坏漏洞(CVE-2014-1490)
2014-02-12 00:00:00
cve
cve
CVE-2014-1490
2014-02-06 05:44:00
CVE-2014-1491
2014-02-06 05:44:00
oraclelinux
oraclelinux
nss and nspr security, bug fix, and enhancement update
2014-09-17 00:00:00
nss and nspr security, bug fix, and enhancement update
2014-07-22 00:00:00
prion
prion
Race condition
2014-02-06 05:44:00
Authentication flaw
2014-02-06 05:44:00
ubuntucve
ubuntucve
CVE-2014-1490
2014-02-05 00:00:00
CVE-2014-1491
2014-02-05 00:00:00
debiancve
debiancve
CVE-2014-1490
2014-02-06 05:44:00
CVE-2014-1491
2014-02-06 05:44:00
intothesymmetry
intothesymmetry
Small subgroup attack in Mozilla NSS
2015-12-22 13:29:00
f5
f5
SOL16716 - Multiple Mozilla NSS vulnerabilities
2015-06-05 00:00:00
K16716 : Multiple Mozilla NSS vulnerabilities
2015-09-17 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:03:51
debian
debian
[SECURITY] [DSA 2858-1] iceweasel security update
2014-02-10 15:41:41
[SECURITY] [DSA 2994-1] nss security update
2014-07-31 11:51:32
[DLA 23-1] nss security update
2014-07-31 11:23:33
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-02-19 00:00:00
Firefox regression
2014-02-19 00:00:00
Firefox vulnerabilities
2014-02-10 00:00:00
suse
suse
Mozilla updates February 2014 (important)
2014-02-08 13:04:12
Security update for MozillaFirefox (important)
2014-02-18 13:25:23
Security update for Mozilla Firefox (important)
2014-02-19 21:04:13
osv
osv
nss - security update
2014-07-31 00:00:00
nss - security update
2014-07-31 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-02-04 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-02-10 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2014
2014-07-15 00:00:00
Oracle Critical Patch Update - October 2014
2014-10-14 00:00:00
Oracle Critical Patch Update Advisory - January 2015
2015-03-10 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.7%
Related for MFSA2014-12