QwikSec

Security Database

CVE

CWE

Training

CVE-2013-0791

Published: Apr 3, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The CERT_DecodeCertPackage function in Mozilla Network Security Services (NSS), as used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, SeaMonkey before 2.17, and other products, allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) via a crafted certificate.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

x_refsource_CONFIRM

SUSE-SU-2013:0850

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_UBUNTU

oval:org.mitre.oval:def:17150

vdb-entry

signature

x_refsource_OVAL

openSUSE-SU-2013:0630

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

http://www.mozilla.org/security/announce/2013/mfsa2013-40.html

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_REDHAT

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

x_refsource_CONFIRM

openSUSE-SU-2013:0631

vendor-advisory

x_refsource_SUSE

https://bugzilla.mozilla.org/show_bug.cgi?id=629816

x_refsource_CONFIRM

SUSE-SU-2013:0645

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.