- Home
- CVEs with nessus.description==Antoine Delignat-Lavaud from Inria discovered an issue in the way NSS
(the Mozilla Network Security Service library, embedded in Wheezy's
Icedove), was parsing ASN.1 data used in signatures, making it
vulnerable to a signature forgery attack.
An attacker could craft ASN.1 data to forge RSA certificates with a
valid certification chain to a trusted CA.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top