34 matches found
Scientific Linux Security Update : nss and nspr on SL5.x i386/x86_64 (20131205)
A flaw was found in the way NSS handled invalid handshake packets. A remote attacker could use this flaw to cause a TLS/SSL client using NSS to crash or, possibly, execute arbitrary code with the privileges of the user running the application. CVE-2013-5605 It was found that the fix for...
nss: Null_Cipher() does not respect maxOutputLen (MFSA 2013-103)
Mozilla Network Security Services NSS 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets...
Security fix for the ALT Linux 6 package nss version 3.14.5-alt0.M60P.1
3.14.5-alt0.M60P.1 built Nov. 23, 2013 Andrey Cherepanov in task 109075 Nov. 23, 2013 Andrey Cherepanov - New version 3.14.5 - Security fixes: + CVE-2013-5605 Handle invalid handshake packets...
DEBIAN-CVE-2013-5605
Mozilla Network Security Services NSS 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets...
CVE-2013-5605
Mozilla Network Security Services NSS 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets...
Code injection
Mozilla Network Security Services NSS 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets...
Firefox < 25.0.1 NSS and NSPR Multiple Vulnerabilities (Mac OS X)
The installed version of Firefox is a version prior to 25.0.1 and is, therefore, potentially affected by the following vulnerabilities : - An error exists related to handling input greater than half the maximum size of the 'PRUint32' value. CVE-2013-1741 - An error exists in the 'NullCipher'...
CVE-2013-5605
Mozilla Network Security Services NSS 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets...
CVE-2013-5605
Mozilla Network Security Services NSS 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets...
SAP MaxDB Malformed Handshake Request Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP MaxDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the serv.exe process which listens by default on TCP port 7210. The process trusts a value...
CVE-2000-0211
The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper sequence, aka the "Misordered Windows Media Services Handshake" vulnerability...
CVE-1999-0601
CVE-1999-0601 affects a network intrusion detection system (IDS) and is caused by improper handling of data within TCP handshake packets. The public records (NVD, CVE list, Red Hat entry) describe the vulnerability as an IDS failing to process TCP handshake data correctly, with a base CVSS v2.0 s...
CVE-1999-0601
A network intrusion detection system IDS does not properly handle data within TCP handshake packets...
CVE-1999-0601
A network intrusion detection system IDS does not properly handle data within TCP handshake packets...