Vulnerability in N/a
CVE-2007-0009
Stack-based buffer overflow in the SSLv2 support in Mozilla Network Security Services (NSS) before 3.11.5, as used by Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, SeaMonkey before 1.0.8, and certain Sun Java…
EPSS: 0.504 (98.8th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- RHSA-2007:0078 (x_refsource_REDHAT, vendor-advisory)
- 24562 (x_refsource_SECUNIA, third-party-advisory)
- 25597 (x_refsource_SECUNIA, third-party-advisory)
- GLSA-200703-22 (vendor-advisory, x_refsource_GENTOO)
- FEDORA-2007-278 (vendor-advisory, x_refsource_FEDORA)
- 24703 (x_refsource_SECUNIA, third-party-advisory)
- 24395 (x_refsource_SECUNIA, third-party-advisory)
- 20070223 Mozilla Network Security Services SSLv2 Server Stack Overflow Vulnerability (x_refsource_IDEFENSE, third-party-advisory)
- 20070226 rPSA-2007-0040-1 firefox (mailing-list, x_refsource_BUGTRAQ)
- FEDORA-2007-308 (vendor-advisory, x_refsource_FEDORA)