Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:11112
HistoryJan 15, 2019 - 8:57 a.m.

Denial Of Service (DoS)

2019-01-1508:57:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

nss is vulnerable to denial of service (DoS) attacks. The vulnerability exists as the CERT_DecodeCertPackage function in Mozilla Network Security Services (NSS), as used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, SeaMonkey before 2.17, and other products, allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) via a crafted certificate.

References

Related

mozilla 1
ubuntucve 1
cve 1
openvas 49
prion 1
debiancve 1
nessus 39
oraclelinux 2
veracode 1
amazon 2
redhat 3
centos 2
ubuntu 3
suse 7
vmware 1
freebsd 1
securityvulns 1
gentoo 1
mozilla
mozilla
Out-of-bounds array read in CERT_DecodeCertPackage — Mozilla
2013-04-02 00:00:00
ubuntucve
ubuntucve
CVE-2013-0791
2013-04-03 00:00:00
cve
cve
CVE-2013-0791
2013-04-03 11:56:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2013-40) - Linux
2021-11-11 00:00:00
Oracle: Security Advisory (ELSA-2013-1144)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2013-1135)
2015-10-06 00:00:00
prion
prion
Out-of-bounds
2013-04-03 11:56:00
debiancve
debiancve
CVE-2013-0791
2013-04-03 11:56:00
nessus
nessus
CentOS 5 : nss (CESA-2013:1135)
2013-08-06 00:00:00
Scientific Linux Security Update : nss and nspr on SL5.x i386/x86_64 (20130805)
2013-08-06 00:00:00
Oracle Linux 6 : nspr / nss / nss-softokn / nss-util (ELSA-2013-1144)
2013-08-08 00:00:00
oraclelinux
oraclelinux
nss and nspr security, bug fix, and enhancement update
2013-08-05 00:00:00
nss, nss-util, nss-softokn, and nspr security update
2013-08-07 00:00:00
veracode
veracode
Timing Side-Channel
2019-05-02 04:48:16
amazon
amazon
Medium: nspr
2013-08-07 21:23:00
Medium: nss
2013-08-07 21:23:00
redhat
redhat
(RHSA-2013:1135) Moderate: nss and nspr security, bug fix, and enhancement update
2013-08-05 00:00:00
(RHSA-2013:1144) Moderate: nss, nss-util, nss-softokn, and nspr security update
2013-08-07 00:00:00
(RHSA-2013:1181) Moderate: rhev-hypervisor6 security and bug fix update
2013-08-27 00:00:00
centos
centos
nspr, nss security update
2013-08-05 19:56:06
nspr, nss security update
2013-08-07 22:22:50
ubuntu
ubuntu
Thunderbird vulnerabilities
2013-04-08 00:00:00
Firefox vulnerabilities
2013-04-04 00:00:00
Unity Firefox Extension update
2013-04-04 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2013-05-28 21:04:38
Mozilla Firefox and others: Update to Firefox 20.0 release (important)
2013-04-05 15:06:14
Security update for Mozilla Firefox (important)
2013-05-28 22:04:36
vmware
vmware
VMware ESX updates to third party libraries
2013-12-05 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-04-02 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-04-03 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON
Related for VERACODE:11112
mozilla1ubuntucve1cve1openvas49prion1debiancve1nessus39oraclelinux2veracode1amazon2redhat3centos2ubuntu3suse7vmware1freebsd1securityvulns1gentoo1