Lucene search

K

Veracode Vulnerability DatabaseVERACODE:11542

HistoryJan 15, 2019 - 9:03 a.m.

HTTP Request Smuggling

2019-01-1509:03:35

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

8

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

nspr is vulnerable to HTTP request smuggling attacks. The vulnerability exists as the definite_length_decoder function in lib/util/quickder.c in Mozilla Network Security Services (NSS) before 3.16.2.4 and 3.17.x before 3.17.3 does not ensure that the DER encoding of an ASN.1 length is properly formed, which allows remote attackers to conduct data-smuggling attacks by using a long byte sequence for an encoding, as demonstrated by the SEC_QuickDERDecodeItem function’s improper handling of an arbitrary-length encoding of 0x00.

CPENameOperatorVersion
nspreq4.9.5__2.el6_4
nspreq4.8.8__2.el5
nspreq4.6.5__1.0.1.el5
nspreq4.8.8__3.el6
nspreq4.9.2__1.el6
nspreq4.10.2__2.el5_10
nspreq4.8.6__1.el6
nspreq4.7.6__1.el5_4
nspreq4.7.4__1.el5_3.1
nspreq4.8.9__3.el6_2

Rows per page:

1-10 of 851

References

lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html

lists.opensuse.org/opensuse-security-announce/2015-01/msg00032.html

lists.opensuse.org/opensuse-security-announce/2015-01/msg00033.html

lists.opensuse.org/opensuse-security-announce/2015-01/msg00036.html

lists.opensuse.org/opensuse-security-announce/2015-03/msg00000.html

www.debian.org/security/2015/dsa-3186

www.intelsecurity.com/resources/wp-berserk-analysis-part-1.pdf

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

www.securitytracker.com/id/1032909

access.redhat.com/security/cve/CVE-2014-1569

bugzilla.mozilla.org/show_bug.cgi?id=1064670

bugzilla.redhat.com/show_bug.cgi?id=1205064

bugzilla.redhat.com/show_bug.cgi?id=1205065

bugzilla.redhat.com/show_bug.cgi?id=1207052

developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17.3_release_notes

rhn.redhat.com/errata/RHBA-2015-0926.html

www.imperialviolet.org/2014/09/26/pkcs1.html

www.reddit.com/r/netsec/comments/2hd1m8/rsa_signature_forgery_in_nss/cksnr02

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

Related for VERACODE:11542

nessus22 cve1 exploitdb1 fedora4 exploitpack1 zdt1 openvas17 debiancve1 debian3 ubuntu1 prion1 osv2 ubuntucve1 securityvulns4 archlinux1 suse6 mageia1 freebsd1 oracle2