- Home
- CVEs with nessus.description==Several vulnerabilities have been discovered in nss, the Mozilla Network Security Service library :
- CVE-2013-1741 Runaway memset in certificate parsing on 64-bit computers leading to a crash by attempting to write 4Gb of nulls.
- CVE-2013-5606 Certificate validation with the verifylog mode did not return validation errors, but instead expected applications to determine the status by looking at the log.
- CVE-2014-1491 Ticket handling protection mechanisms bypass due to the lack of restriction of public values in Diffie-Hellman key exchanges.
- CVE-2014-1492 Incorrect IDNA domain name matching for wildcard certificates could allow specially crafted invalid certificates to be considered as valid
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top