Количество 13
Количество 13
CVE-2015-7181
The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue.
CVE-2015-7181
The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue.
CVE-2015-7181
The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue.
CVE-2015-7181
The sec_asn1d_parse_leaf function in Mozilla Network Security Services ...
GHSA-738m-rm9h-8qh7
The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue.
BDU:2015-11995
Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код
ELSA-2015-1981
ELSA-2015-1981: nss, nss-util, and nspr security update (CRITICAL)
ELSA-2015-1980
ELSA-2015-1980: nss and nspr security update (CRITICAL)
SUSE-SU-2015:1981-1
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss
SUSE-SU-2015:1978-1
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss
SUSE-SU-2015:1926-1
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss
openSUSE-SU-2015:2229-1
Security update for MozillaThunderbird
openSUSE-SU-2015:1942-1
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss, xulrunner, seamonkey
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2015-7181 The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue. | CVSS2: 7.5 | 25% Средний | почти 10 лет назад |
 | CVE-2015-7181 The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue. | CVSS2: 6.8 | 25% Средний | почти 10 лет назад |
 | CVE-2015-7181 The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue. | CVSS2: 7.5 | 25% Средний | почти 10 лет назад |
| CVE-2015-7181 The sec_asn1d_parse_leaf function in Mozilla Network Security Services ... | CVSS2: 7.5 | 25% Средний | почти 10 лет назад |
| GHSA-738m-rm9h-8qh7 The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue. | 25% Средний | больше 3 лет назад | |
 | BDU:2015-11995 Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код | CVSS2: 7.5 | 25% Средний | почти 10 лет назад |
| ELSA-2015-1981 ELSA-2015-1981: nss, nss-util, and nspr security update (CRITICAL) | почти 10 лет назад | ||
| ELSA-2015-1980 ELSA-2015-1980: nss and nspr security update (CRITICAL) | почти 10 лет назад | ||
 | SUSE-SU-2015:1981-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss | почти 10 лет назад | ||
| SUSE-SU-2015:1978-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss | почти 10 лет назад | ||
| SUSE-SU-2015:1926-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss | почти 10 лет назад | ||
| openSUSE-SU-2015:2229-1 Security update for MozillaThunderbird | больше 9 лет назад | ||
| openSUSE-SU-2015:1942-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss, xulrunner, seamonkey | почти 10 лет назад |
Уязвимостей на страницу