Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-7182

Опубликовано: 05 нояб. 2015
Источник: ubuntu
Приоритет: medium
CVSS2: 7.5
CVSS3: 9.8

Описание

Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data.

РелизСтатусПримечание
devel

released

42.0+build2-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [42.0+build2-0ubuntu0.14.04.1]]
precise

released

42.0+build2-0ubuntu0.12.04.1
trusty

released

42.0+build2-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [42.0+build2-0ubuntu0.14.04.1]
upstream

released

42.0
vivid

released

42.0+build2-0ubuntu0.15.04.1
wily

released

42.0+build2-0ubuntu0.15.10.1

Показывать по

РелизСтатусПримечание
devel

released

2:3.19.2.1-0ubuntu1
esm-infra-legacy/trusty

not-affected

2:3.19.2.1-0ubuntu0.14.04.1
precise

released

3.19.2.1-0ubuntu0.12.04.1
trusty

released

2:3.19.2.1-0ubuntu0.14.04.1
trusty/esm

not-affected

2:3.19.2.1-0ubuntu0.14.04.1
upstream

released

3.19.2.1,3.19.4,3.20.1
vivid

released

2:3.19.2.1-0ubuntu0.15.04.1
vivid/stable-phone-overlay

released

2:3.19.2.1-0ubuntu0.15.04.1
vivid/ubuntu-core

DNE

wily

released

2:3.19.2.1-0ubuntu0.15.10.1

Показывать по

РелизСтатусПримечание
devel

released

1:38.4.0+build3-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1:38.4.0+build3-0ubuntu0.14.04.1]]
precise

released

1:38.4.0+build3-0ubuntu0.12.04.1
trusty

released

1:38.4.0+build3-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [1:38.4.0+build3-0ubuntu0.14.04.1]
upstream

released

38.4.0
vivid

released

1:38.4.0+build3-0ubuntu0.15.04.1
wily

released

1:38.4.0+build3-0ubuntu0.15.10.1

Показывать по

Ссылки на источники

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2015-7182

redhat
почти 10 лет назад

Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data.

nvd логотип

CVE-2015-7182

CVSS3: 9.8
nvd
почти 10 лет назад

Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data.

debian логотип

CVE-2015-7182

CVSS3: 9.8
debian
почти 10 лет назад

Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Sec ...

github логотип

GHSA-f3ww-87xf-9498

CVSS3: 9.8
github
больше 3 лет назад

Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data.

fstec логотип

BDU:2015-12005

fstec
почти 10 лет назад

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

7.5 High

CVSS2

9.8 Critical

CVSS3