CVE-2004-0826
CVSS7.5
发布时间 :2004-12-31 00:00:00
修订时间 :2016-10-17 22:49:18
NMCOS    

[原文]Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.


[CNNVD]Netscape NSS库远程缓冲区溢出漏洞(CNNVD-200412-948)

        
        Netscape Network Security Services库是用于Netscape Enterprise Server(NES)和Sun One / Sun Java System Web Server的安全服务程序库。
        NSS程序库存在一个缓冲区溢出,可导致使用这个库通过安全套接口层通信的应用程序产生安全问题,可能以进程权限在系统上执行任意指令。
        NSS库在SSLv2记录解析中存在一个缺陷,可导致远程破坏。在SSLv2协商中解析第一个记录时,客户端的Hello消息,服务程序没有对记录字段的长度进行正确检查。结果可导致远程攻击者触发基于堆的溢出。Netscape Enterprise Server和Sun One默认关闭SSLv2协议,但是多数大型站点开启这个功能,成功利用此漏洞,可能以WEB服务进程权限在系统上执行任意指令。
        

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:netscape:enterprise_server:4.1:sp3
cpe:/a:mozilla:network_security_services:3.9Mozilla Network Security Services 3.9
cpe:/a:mozilla:network_security_services:3.8Mozilla Network Security Services 3.8
cpe:/a:mozilla:network_security_services:3.7Mozilla Network Security Services 3.7
cpe:/a:netscape:directory_server:4.1Netscape Netscape Directory Server 4.1
cpe:/a:mozilla:network_security_services:3.6Mozilla Network Security Services 3.6
cpe:/a:netscape:enterprise_server:4.1:sp7
cpe:/a:sun:one_web_server:4.1:sp14Sun ONE Web Server 4.1 SP9
cpe:/a:mozilla:network_security_services:3.5Mozilla Network Security Services 3.5
cpe:/a:mozilla:network_security_services:3.4Mozilla Network Security Services 3.4
cpe:/a:mozilla:network_security_services:3.3Mozilla Network Security Services 3.3
cpe:/a:netscape:enterprise_server:4.1:sp4
cpe:/a:mozilla:network_security_services:3.2Mozilla Network Security Services 3.2
cpe:/a:netscape:enterprise_server:4.1:sp6
cpe:/a:netscape:enterprise_server:3.0l
cpe:/a:netscape:enterprise_server:4.1:sp5
cpe:/a:netscape:enterprise_server:4.1:sp8
cpe:/a:netscape:enterprise_server:3.0.1b
cpe:/a:sun:java_system_application_server:7.0::platform
cpe:/o:hp:hp-ux:11.11HP-UX 11.11
cpe:/a:netscape:enterprise_server:2.0Netscape Netscape Enterprise Server 2.0
cpe:/a:sun:java_system_application_server:7.0:ur4
cpe:/a:netscape:enterprise_server:4.0Netscape Netscape Enterprise Server 4.0
cpe:/a:sun:java_enterprise_system:2004q2
cpe:/a:sun:one_web_server:4.1:sp5Sun ONE Web Server 4.1 SP5
cpe:/a:sun:one_web_server:4.1:sp6Sun ONE Web Server 4.1 SP6
cpe:/a:sun:one_web_server:4.1:sp7Sun ONE Web Server 4.1 SP7
cpe:/a:mozilla:network_security_services:3.3.1Mozilla Network Security Services 3.3.1
cpe:/a:sun:one_web_server:4.1:sp8Sun ONE Web Server 4.1 SP8
cpe:/a:mozilla:network_security_services:3.3.2Mozilla Network Security Services 3.3.2
cpe:/a:netscape:enterprise_server:3.6::solaris
cpe:/a:sun:one_web_server:4.1:sp9Sun ONE Web Server 4.1 SP9
cpe:/a:netscape:enterprise_server:3.5::solaris
cpe:/a:sun:java_system_application_server:7.0::enterprise
cpe:/a:mozilla:network_security_services:3.7.1Mozilla Network Security Services 3.7.1
cpe:/a:netscape:enterprise_server:4.1.1::netware
cpe:/a:netscape:enterprise_server:3.5.1Netscape Netscape Enterprise Server 3.5.1
cpe:/a:netscape:directory_server:3.1:patch1
cpe:/a:sun:one_web_server:6.0:sp3
cpe:/a:sun:one_web_server:6.0:sp7
cpe:/a:sun:one_web_server:6.0:sp4
cpe:/a:sun:one_web_server:6.1:sp1Sun ONE Web Server 6.1 SP1
cpe:/a:sun:one_web_server:6.1:sp2Sun ONE Web Server 6.1 SP2
cpe:/a:sun:one_web_server:4.1:sp1Sun ONE Web Server 4.1 SP1
cpe:/a:netscape:directory_server:3.12Netscape Netscape Directory Server 3.12
cpe:/a:sun:one_web_server:4.1:sp2Sun ONE Web Server 4.1 SP2
cpe:/a:netscape:directory_server:1.3:patch5
cpe:/a:sun:one_web_server:4.1:sp3Sun ONE Web Server 4.1 SP3
cpe:/a:sun:one_web_server:6.0:sp8
cpe:/a:sun:one_web_server:4.1:sp4Sun ONE Web Server 4.1 SP4
cpe:/a:sun:one_web_server:6.0:sp5
cpe:/a:sun:java_system_application_server:7.0::standard
cpe:/a:sun:one_application_server:6.0Sun ONE Application Server 6.0
cpe:/a:netscape:directory_server:4.13Netscape Netscape Directory Server 4.13
cpe:/a:netscape:enterprise_server:3.6:sp2
cpe:/a:netscape:enterprise_server:3.6:sp1
cpe:/a:sun:one_application_server:6.0:sp1
cpe:/a:netscape:certificate_server:4.2Netscape Certificate Server 4.2
cpe:/a:netscape:directory_server:4.11Netscape Netscape Directory Server 4.11
cpe:/a:sun:one_application_server:6.0:sp2
cpe:/a:netscape:enterprise_server:2.0.1c
cpe:/a:netscape:enterprise_server:5.0::netware
cpe:/a:netscape:enterprise_server:2.0a
cpe:/a:sun:java_system_application_server:7.1Sun Java System Application Server 7.1
cpe:/a:mozilla:network_security_services:3.7.2Mozilla Network Security Services 3.7.2
cpe:/a:netscape:enterprise_server:3.3Netscape Netscape Enterprise Server 3.3
cpe:/a:mozilla:network_security_services:3.7.3Mozilla Network Security Services 3.7.3
cpe:/a:netscape:enterprise_server:3.4Netscape Netscape Enterprise Server 3.4
cpe:/a:netscape:enterprise_server:3.5Netscape Netscape Enterprise Server 3.5
cpe:/a:mozilla:network_security_services:3.7.5Mozilla Network Security Services 3.7.5
cpe:/a:netscape:enterprise_server:3.6Netscape Netscape Enterprise Server 3.6
cpe:/a:netscape:enterprise_server:3.6:sp3
cpe:/a:mozilla:network_security_services:3.7.7Mozilla Network Security Services 3.7.7
cpe:/a:netscape:enterprise_server:3.0Netscape Netscape Enterprise Server 3.0
cpe:/a:netscape:enterprise_server:3.1Netscape Netscape Enterprise Server 3.1
cpe:/a:netscape:enterprise_server:3.2Netscape Netscape Enterprise Server 3.2
cpe:/a:mozilla:network_security_services:3.2.1Mozilla Network Security Services 3.2.1
cpe:/a:mozilla:network_security_services:3.4.1Mozilla Network Security Services 3.4.1
cpe:/a:mozilla:network_security_services:3.4.2Mozilla Network Security Services 3.4.2
cpe:/a:mozilla:network_security_services:3.6.1Mozilla Network Security Services 3.6.1
cpe:/a:sun:java_enterprise_system:2003q4
cpe:/a:sun:one_web_server:4.1Sun ONE Web Server 4.1
cpe:/a:sun:one_web_server:4.1:sp10Sun ONE Web Server 4.1 SP10
cpe:/a:sun:one_web_server:4.1:sp11Sun ONE Web Server 4.1 SP11
cpe:/a:sun:one_web_server:4.1:sp12Sun ONE Web Server 4.1 SP12
cpe:/a:sun:one_web_server:4.1:sp13Sun ONE Web Server 4.1 SP8
cpe:/a:sun:one_web_server:6.1Sun ONE Web Server 6.1
cpe:/a:netscape:personalization_engineNetscape Personalization Engine
cpe:/o:hp:hp-ux:11.23::ia64_64-bit
cpe:/a:netscape:certificate_server:1.0:patch1
cpe:/a:netscape:enterprise_server:3.0.7a::netware
cpe:/o:hp:hp-ux:11.00HP-UX 11.00
cpe:/a:netscape:enterprise_server:3.0.1Netscape Netscape Enterprise Server 3.0.1

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0826
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0826
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200412-948
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=109351293827731&w=2
(UNKNOWN)  HP  SSRT4779
http://www.securityfocus.com/bid/11015
(PATCH)  BID  11015
http://xforce.iss.net/xforce/alerts/id/180
(VENDOR_ADVISORY)  ISS  20040823 Netscape NSS Library Remote Compromise
http://xforce.iss.net/xforce/xfdb/16314
(PATCH)  XF  sslv2-client-hello-overflow(16314)

- 漏洞信息

Netscape NSS库远程缓冲区溢出漏洞
高危 边界条件错误
2004-12-31 00:00:00 2006-08-31 00:00:00
远程  
        
        Netscape Network Security Services库是用于Netscape Enterprise Server(NES)和Sun One / Sun Java System Web Server的安全服务程序库。
        NSS程序库存在一个缓冲区溢出,可导致使用这个库通过安全套接口层通信的应用程序产生安全问题,可能以进程权限在系统上执行任意指令。
        NSS库在SSLv2记录解析中存在一个缺陷,可导致远程破坏。在SSLv2协商中解析第一个记录时,客户端的Hello消息,服务程序没有对记录字段的长度进行正确检查。结果可导致远程攻击者触发基于堆的溢出。Netscape Enterprise Server和Sun One默认关闭SSLv2协议,但是多数大型站点开启这个功能,成功利用此漏洞,可能以WEB服务进程权限在系统上执行任意指令。
        

- 公告与补丁

        厂商补丁:
        Netscape
        --------
        供应商提供的NSS库可从如下地址获得:
        ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_9_2_RTM
        另外也可以通过参数设置关闭中SSL 2来暂时防护。

- 漏洞信息

9116
Netscape Network Security Services (NSS) Library SSLv2 Challenge Overflow
Remote / Network Access Input Manipulation
Loss of Integrity
Exploit Commercial

- 漏洞描述

A remote overflow exists in the Network Security Services library. The library fails to validate the length of the "challenge" field during negotiation of the SSLv2 protocol. This library is used by many commercial and open-source products to provide SSL services. Affected applications include the Netscape Enterprise web server, the SunONE web, directory, and mail servers, and a large number of open-source application servers. Successful exploitation of this issue may result in arbitrary code execution with the privileges of the vulnerable service, leading to a lack of integrity.

- 时间线

2004-08-23 Unknow
2004-08-25 Unknow

- 解决方案

The solution to this vulnerability depends on the affected application. In most situations, you can simply replace the NSS library with the latest version from the Mozilla Organization. Version 3.9.2 and newer of the NSS library are not vulnerable to this flaw. In the case of commercial applications, the vendor should be able to provide you with a patched version of the product. It is also possible to correct the flaw by implementing the following workaround(s): Disable the SSLv2 protocol and all SSLv2 ciphers. The process for accomplishing this task depends on the specific application.

- 相关参考

- 漏洞作者

- 漏洞信息

Mozilla Network Security Services Library Remote Heap Overflow Vulnerability
Boundary Condition Error 11015
Yes No
2004-08-23 12:00:00 2008-07-14 11:39:00
Discovery is credited to Mark Dowd of ISS X-Force.

- 受影响的程序版本

Sun ONE Web Server 6.1 SP2
Sun ONE Web Server 6.1 SP1
Sun ONE Web Server 6.1
Sun ONE Web Server 6.0 SP8
Sun ONE Web Server 6.0 SP7
Sun ONE Web Server 6.0 SP6
Sun ONE Web Server 6.0 SP5
Sun ONE Web Server 6.0 SP4
Sun ONE Web Server 6.0 SP3
Sun ONE Web Server 6.0 SP2
Sun ONE Web Server 6.0 SP1
Sun ONE Web Server 6.0
Sun ONE Web Server 4.1 SP9
Sun ONE Web Server 4.1 SP8
Sun ONE Web Server 4.1 SP7
Sun ONE Web Server 4.1 SP6
Sun ONE Web Server 4.1 SP5
Sun ONE Web Server 4.1 SP5
Sun ONE Web Server 4.1 SP4
Sun ONE Web Server 4.1 SP3
Sun ONE Web Server 4.1 SP2
Sun ONE Web Server 4.1 SP14
Sun ONE Web Server 4.1 SP13
Sun ONE Web Server 4.1 SP12
Sun ONE Web Server 4.1 SP11
Sun ONE Web Server 4.1 SP10
Sun ONE Web Server 4.1 SP1
Sun ONE Web Server 4.1
Sun ONE Directory Server 5.2
Sun ONE Directory Server 5.1 x86
Sun ONE Directory Server 5.1 SP3 x86
Sun ONE Directory Server 5.1 SP3
Sun ONE Directory Server 5.1 SP2
Sun ONE Directory Server 5.1 SP1
Sun ONE Directory Server 5.1
- HP HP-UX 11.0
- HP HP-UX 11i v1
- IBM AIX 4.3.3
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Terminal Services SP2
- Microsoft Windows NT Enterprise Server 4.0 SP6a
- Microsoft Windows NT Server 4.0 SP6a
- RedHat Linux 7.2
- Sun Linux 5.0.3
- Sun Linux 5.0
+ Sun Solaris 9_x86
+ Sun Solaris 9
- Sun Solaris 8_x86
- Sun Solaris 8_sparc
Sun ONE Directory Server 5.0 SP2
Sun ONE Directory Server 5.0 SP1
Sun ONE Directory Server 5.0
- HP HP-UX 11.0
- HP HP-UX 11i v1
- IBM AIX 4.3.3
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Terminal Services SP2
- Microsoft Windows NT Enterprise Server 4.0 SP6a
- Microsoft Windows NT Server 4.0 SP6a
- RedHat Linux 7.2
- Sun Linux 5.0.3
- Sun Linux 5.0
- Sun Solaris 9_x86
- Sun Solaris 9
- Sun Solaris 8_x86
- Sun Solaris 8_sparc
Sun ONE Directory Server 4.16 SP1
Sun ONE Directory Server 4.16
Sun ONE Certificate Server 4.1
Sun ONE Application Server 7.0 UR2 Upgrade Standard
Sun ONE Application Server 7.0 UR2 Upgrade Platform
Sun ONE Application Server 7.0 UR2 Standard Edition
Sun ONE Application Server 7.0 UR2 Platform Edition
Sun ONE Application Server 7.0 UR1 Standard Edition
Sun ONE Application Server 7.0 UR1 Platform Edition
Sun ONE Application Server 7.0 Standard Edition
Sun ONE Application Server 7.0 Platform Edition
Sun ONE Application Server 6.5 SP1 MU2
Sun ONE Application Server 6.5 SP1 MU1
Sun ONE Application Server 6.5 SP1
Sun ONE Application Server 6.5 MU3
Sun ONE Application Server 6.5 MU2
Sun ONE Application Server 6.5 MU1
Sun ONE Application Server 6.5
Sun ONE Application Server 6.0 SP4
Sun ONE Application Server 6.0 SP3
Sun ONE Application Server 6.0 SP2
Sun ONE Application Server 6.0 SP1
Sun ONE Application Server 6.0
Sun Java System Application Server 7.1
Sun Java System Application Server 7.0 UR4
Sun Java System Application Server 7.0 Standard Edition
Sun Java System Application Server 7.0 Platform Edition
Sun Java System Application Server 7.0 Enterprise Edition
Sun Java Enterprise System 2004Q2
Sun Java Enterprise System 2003Q4
+ Sun Solaris 9
+ Sun Solaris 8_x86
+ Sun Solaris 8_sparc
Netscape Personalization Engine
Netscape Enterprise Server for Solaris 3.6
Netscape Enterprise Server for Solaris 3.5
Netscape Enterprise Server for NetWare 4/5 5.0
Netscape Enterprise Server for NetWare 4/5 4.1.1
Netscape Enterprise Server for NetWare 4/5 3.0.7 a
- Novell Netware 5.0
- Novell Netware 4.11 SP5B
- Novell Netware 4.11
Netscape Enterprise Server 4.1 SP8
Netscape Enterprise Server 4.1 SP7
Netscape Enterprise Server 4.1 SP6
Netscape Enterprise Server 4.1 SP5
Netscape Enterprise Server 4.1 SP4
Netscape Enterprise Server 4.1 SP3
Netscape Enterprise Server 4.0
Netscape Enterprise Server 3.51
- Digital UNIX 4.0 D
- HP HP-UX 10.10
- IBM AIX 4.1.5
- Microsoft Windows NT 4.0
- SGI IRIX 6.2
- Sun Solaris 2.5.1
Netscape Enterprise Server 3.6 SP3
Netscape Enterprise Server 3.6 SP2
Netscape Enterprise Server 3.6 SP1
Netscape Enterprise Server 3.6
- Compaq Tru64 4.0 d
- Digital UNIX 4.0 B
- HP HP-UX 11.0
- IBM AIX 4.2
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0
- SGI IRIX 6.5
- SGI IRIX 6.2
- Sun Solaris 2.5.1
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
Netscape Enterprise Server 3.5
- Compaq Tru64 4.0 d
- HP HP-UX 11.0
- IBM AIX 4.2.1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- SGI IRIX 6.5
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6_sparc
Netscape Enterprise Server 3.4
- Compaq Tru64 4.0 d
- HP HP-UX 11.0
- IBM AIX 4.2.1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- SGI IRIX 6.5
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6_sparc
Netscape Enterprise Server 3.3
- Compaq Tru64 4.0 d
- HP HP-UX 11.0
- IBM AIX 4.2.1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- SGI IRIX 6.5
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6_sparc
Netscape Enterprise Server 3.2
- Compaq Tru64 4.0 d
- HP HP-UX 11.0
- IBM AIX 4.2.1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- SGI IRIX 6.5
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6_sparc
Netscape Enterprise Server 3.1
- Compaq Tru64 4.0 d
- HP HP-UX 11.0
- IBM AIX 4.2.1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- SGI IRIX 6.5
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6_sparc
Netscape Enterprise Server 3.0.1 B
Netscape Enterprise Server 3.0.1
Netscape Enterprise Server 3.0 L
Netscape Enterprise Server 3.0
- Compaq Tru64 4.0 d
- HP HP-UX 11.0
- IBM AIX 4.2.1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- SGI IRIX 6.5
- Sun Solaris 7.0
- Sun Solaris 2.6_sparc
Netscape Enterprise Server 2.0.1 C
Netscape Enterprise Server 2.0 a
Netscape Enterprise Server 2.0
Netscape Directory Server 4.13
Netscape Directory Server 4.12
Netscape Directory Server 4.11
Netscape Directory Server 4.1
Netscape Directory Server 3.12
Netscape Directory Server 3.1 P1
Netscape Directory Server 1.3 P5
Netscape Certificate Server 4.2
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
Netscape Certificate Server 1.0 P1
Mozilla Network Security Services (NSS) 3.9
+ Mozilla Browser 1.5
Mozilla Network Security Services (NSS) 3.8
+ Galeon Galeon Browser 1.2.13
+ Mozilla Browser 1.4.1
+ Mozilla Browser 1.4.1
+ Mozilla Browser 1.4 b
+ Mozilla Browser 1.4 b
+ Mozilla Browser 1.4 a
+ Mozilla Browser 1.4 a
+ Mozilla Browser 1.4
+ Mozilla Browser 1.4
Mozilla Network Security Services (NSS) 3.7.7
Mozilla Network Security Services (NSS) 3.7.5
Mozilla Network Security Services (NSS) 3.7.3
Mozilla Network Security Services (NSS) 3.7.2
Mozilla Network Security Services (NSS) 3.7.1
Mozilla Network Security Services (NSS) 3.7
Mozilla Network Security Services (NSS) 3.6.1
Mozilla Network Security Services (NSS) 3.6
Mozilla Network Security Services (NSS) 3.5
Mozilla Network Security Services (NSS) 3.4.2
Mozilla Network Security Services (NSS) 3.4.1
Mozilla Network Security Services (NSS) 3.4
Mozilla Network Security Services (NSS) 3.3.2
Mozilla Network Security Services (NSS) 3.3.1
Mozilla Network Security Services (NSS) 3.3
Mozilla Network Security Services (NSS) 3.2.1
Mozilla Network Security Services (NSS) 3.2
HP HP-UX B.11.23
HP HP-UX B.11.11
HP HP-UX B.11.00
Mozilla Network Security Services (NSS) 3.9.2

- 不受影响的程序版本

Mozilla Network Security Services (NSS) 3.9.2

- 漏洞讨论

NSS is prone to a remote heap-overflow vulnerability because it fails to perform sufficient boundary checks. Successful exploits may allow arbitrary code to run and may grant the attacker unauthorized access to a vulnerable computer.

The NSS library is commonly used by Netscape Enterprise Server and Sun One/iPlanet servers. The SSLv2 protocol is not enabled by default on these servers. Other products may be affected as well.

- 漏洞利用

Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

- 解决方案

Updates are available. Please see the references for details.


Sun Java Enterprise System 2003Q4

Mozilla Network Security Services (NSS) 3.2

Mozilla Network Security Services (NSS) 3.2.1

Mozilla Network Security Services (NSS) 3.3

Mozilla Network Security Services (NSS) 3.3.2

Mozilla Network Security Services (NSS) 3.4

Mozilla Network Security Services (NSS) 3.5

Mozilla Network Security Services (NSS) 3.6.1

Mozilla Network Security Services (NSS) 3.7.2

Mozilla Network Security Services (NSS) 3.7.3

Mozilla Network Security Services (NSS) 3.7.5

Mozilla Network Security Services (NSS) 3.7.7

Mozilla Network Security Services (NSS) 3.8

Mozilla Network Security Services (NSS) 3.9

Sun Java System Application Server 7.0 Platform Edition

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站