CVE-2007-0009

MEDIUM

Description

Stack-based buffer overflow in the SSLv2 support in Mozilla Network Security Services (NSS) before 3.11.5, as used by Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, SeaMonkey before 1.0.8, and certain Sun Java System server products before 20070611, allows remote attackers to execute arbitrary code via invalid "Client Master Key" length values.

References

ftp://patches.sgi.com/support/free/security/advisories/20070202-01-P.asc

ftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.asc

http://fedoranews.org/cms/node/2709

http://fedoranews.org/cms/node/2711

http://fedoranews.org/cms/node/2747

http://fedoranews.org/cms/node/2749

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=483

http://lists.suse.com/archive/suse-security-announce/2007-Mar/0001.html

http://rhn.redhat.com/errata/RHSA-2007-0077.html

http://secunia.com/advisories/24253

http://secunia.com/advisories/24277

http://secunia.com/advisories/24287

http://secunia.com/advisories/24290

http://secunia.com/advisories/24293

http://secunia.com/advisories/24333

http://secunia.com/advisories/24342

http://secunia.com/advisories/24343

http://secunia.com/advisories/24384

http://secunia.com/advisories/24389

http://secunia.com/advisories/24395

http://secunia.com/advisories/24406

http://secunia.com/advisories/24410

http://secunia.com/advisories/24455

http://secunia.com/advisories/24456

http://secunia.com/advisories/24457

http://secunia.com/advisories/24522

http://secunia.com/advisories/24562

http://secunia.com/advisories/24650

http://secunia.com/advisories/24703

http://secunia.com/advisories/25588

http://secunia.com/advisories/25597

http://security.gentoo.org/glsa/glsa-200703-18.xml

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.338131

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.363947

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.374851

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102856-1

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102945-1

http://www.debian.org/security/2007/dsa-1336

http://www.gentoo.org/security/en/glsa/glsa-200703-22.xml

http://www.kb.cert.org/vuls/id/592796

http://www.mandriva.com/security/advisories?name=MDKSA-2007:050

http://www.mandriva.com/security/advisories?name=MDKSA-2007:052

http://www.mozilla.org/security/announce/2007/mfsa2007-06.html

http://www.novell.com/linux/security/advisories/2007_22_mozilla.html

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

http://www.osvdb.org/32106

http://www.redhat.com/support/errata/RHSA-2007-0078.html

http://www.redhat.com/support/errata/RHSA-2007-0079.html

http://www.redhat.com/support/errata/RHSA-2007-0097.html

http://www.redhat.com/support/errata/RHSA-2007-0108.html

http://www.securityfocus.com/archive/1/461336/100/0/threaded

http://www.securityfocus.com/archive/1/461809/100/0/threaded

http://www.securityfocus.com/bid/64758

http://www.securitytracker.com/id?1017696

http://www.ubuntu.com/usn/usn-428-1

http://www.ubuntu.com/usn/usn-431-1

http://www.vupen.com/english/advisories/2007/0718

http://www.vupen.com/english/advisories/2007/0719

http://www.vupen.com/english/advisories/2007/1165

http://www.vupen.com/english/advisories/2007/2141

https://bugzilla.mozilla.org/show_bug.cgi?id=364323

https://exchange.xforce.ibmcloud.com/vulnerabilities/32663

https://issues.rpath.com/browse/RPL-1081

https://issues.rpath.com/browse/RPL-1103

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10174

Details

Source: MITRE

Published: 2007-02-26

Updated: 2019-10-09

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

Tenable Plugins

View all (43 total)

IDNameProductFamilySeverity
67455Oracle Linux 4 : Firefox (ELSA-2007-0079)NessusOracle Linux Local Security Checks
high
67454Oracle Linux 4 : thunderbird (ELSA-2007-0078)NessusOracle Linux Local Security Checks
high
67453Oracle Linux 3 / 4 : seamonkey (ELSA-2007-0077)NessusOracle Linux Local Security Checks
high
67452Oracle Linux 4 : seamonkey (ELSA-2007-0077-2)NessusOracle Linux Local Security Checks
high
63841RHEL 5 : thunderbird (RHSA-2007:0108)NessusRed Hat Local Security Checks
high
29359SuSE 10 Security Update : MozillaFirefox (ZYPP Patch Number 2683)NessusSuSE Local Security Checks
high
28025Ubuntu 5.10 / 6.06 LTS / 6.10 : mozilla-thunderbird vulnerabilities (USN-431-1)NessusUbuntu Local Security Checks
high
28022Ubuntu 6.06 LTS : firefox regression (USN-428-2)NessusUbuntu Local Security Checks
high
28021Ubuntu 5.10 / 6.06 LTS / 6.10 : firefox vulnerabilities (USN-428-1)NessusUbuntu Local Security Checks
high
27440openSUSE 10 Security Update : seamonkey (seamonkey-2811)NessusSuSE Local Security Checks
high
27439openSUSE 10 Security Update : seamonkey (seamonkey-2691)NessusSuSE Local Security Checks
high
27119openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-2699)NessusSuSE Local Security Checks
high
27118openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-2647)NessusSuSE Local Security Checks
high
25779Debian DSA-1336-1 : mozilla-firefox - several vulnerabilitiesNessusDebian Local Security Checks
high
25318RHEL 5 : firefox (RHSA-2007:0097)NessusRed Hat Local Security Checks
high
25000Sun Java Enterprise Server NSS Remote Code Execution VulnerabilitiesNessusWindows
medium
24888GLSA-200703-22 : Mozilla Network Security Service: Remote execution of arbitrary codeNessusGentoo Local Security Checks
medium
24867GLSA-200703-18 : Mozilla Thunderbird: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
3942LedgerSMB / SQL-Ledger Authentication BypassNessus Network MonitorWeb Servers
medium
24791Slackware 11.0 : seamonkey (SSA:2007-066-05)NessusSlackware Local Security Checks
high
24790Slackware 10.2 / 11.0 : mozilla-thunderbird (SSA:2007-066-04)NessusSlackware Local Security Checks
high
24789Slackware 10.2 / 11.0 : mozilla-firefox (SSA:2007-066-03)NessusSlackware Local Security Checks
high
24778Mandrake Linux Security Advisory : mozilla-thunderbird (MDKSA-2007:052)NessusMandriva Local Security Checks
high
24774RHEL 4 : thunderbird (RHSA-2007:0078)NessusRed Hat Local Security Checks
high
24769Fedora Core 5 : thunderbird-1.5.0.10-1.fc5 (2007-309)NessusFedora Local Security Checks
high
24768Fedora Core 6 : thunderbird-1.5.0.10-1.fc6 (2007-308)NessusFedora Local Security Checks
high
24763CentOS 4 : thunderbird (CESA-2007:0078)NessusCentOS Local Security Checks
high
3931Mozilla Thunderbird < 1.5.0.10 Multiple Vulnerabilities (deprecated)Nessus Network MonitorSMTP Clients
medium
24753Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:050-1)NessusMandriva Local Security Checks
high
24748Mozilla Thunderbird < 1.5.0.10 Multiple VulnerabilitiesNessusWindows
high
3927SeaMonkey < 1.0.8 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
medium
24735SeaMonkey < 1.0.8 Multiple VulnerabilitiesNessusWindows
high
24715Fedora Core 6 : nspr-4.6.5-0.6.0.fc6 / nss-3.11.5-0.6.0.fc6 (2007-279)NessusFedora Local Security Checks
medium
24714Fedora Core 5 : nspr-4.6.5-0.5.0.fc5 / nss-3.11.5-0.5.0.fc5 (2007-278)NessusFedora Local Security Checks
medium
3922Mozilla Firefox < 1.5.0.10 / 2.0.0.2 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
medium
24708RHEL 4 : Firefox (RHSA-2007:0079)NessusRed Hat Local Security Checks
high
24707RHEL 2.1 / 3 / 4 : seamonkey (RHSA-2007:0077)NessusRed Hat Local Security Checks
high
24705FreeBSD : mozilla -- multiple vulnerabilities (12bd6ecf-c430-11db-95c5-000c6ec775d9)NessusFreeBSD Local Security Checks
high
24704CentOS 4 : firefox (CESA-2007:0079)NessusCentOS Local Security Checks
high
24703CentOS 3 / 4 : seamonkey (CESA-2007:0077)NessusCentOS Local Security Checks
high
24701Firefox < 1.5.0.10 / 2.0.0.2 Multiple VulnerabilitiesNessusWindows
high
800879SeaMonkey < 1.0.8 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
800760Firefox < 1.5.0.10 / 2.0.0.2 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high