CVE-2014-1568

HIGH

Description

Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before 3.16.5, and 3.17.x before 3.17.1, as used in Mozilla Firefox before 32.0.3, Mozilla Firefox ESR 24.x before 24.8.1 and 31.x before 31.1.1, Mozilla Thunderbird before 24.8.1 and 31.x before 31.1.2, Mozilla SeaMonkey before 2.29.1, Google Chrome before 37.0.2062.124 on Windows and OS X, and Google Chrome OS before 37.0.2062.120, does not properly parse ASN.1 values in X.509 certificates, which makes it easier for remote attackers to spoof RSA signatures via a crafted certificate, aka a "signature malleability" issue.

References

http://googlechromereleases.blogspot.com/2014/09/stable-channel-update_24.html

http://googlechromereleases.blogspot.com/2014/09/stable-channel-update-for-chrome-os_24.html

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00032.html

http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00036.html

http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00039.html

http://rhn.redhat.com/errata/RHSA-2014-1307.html

http://rhn.redhat.com/errata/RHSA-2014-1354.html

http://rhn.redhat.com/errata/RHSA-2014-1371.html

http://secunia.com/advisories/61540

http://secunia.com/advisories/61574

http://secunia.com/advisories/61575

http://secunia.com/advisories/61576

http://secunia.com/advisories/61583

http://www.debian.org/security/2014/dsa-3033

http://www.debian.org/security/2014/dsa-3034

http://www.debian.org/security/2014/dsa-3037

http://www.kb.cert.org/vuls/id/772676

http://www.mozilla.org/security/announce/2014/mfsa2014-73.html

http://www.novell.com/support/kb/doc.php?id=7015701

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

http://www.securityfocus.com/bid/70116

http://www.ubuntu.com/usn/USN-2360-1

http://www.ubuntu.com/usn/USN-2360-2

http://www.ubuntu.com/usn/USN-2361-1

https://bugzilla.mozilla.org/show_bug.cgi?id=1064636

https://bugzilla.mozilla.org/show_bug.cgi?id=1069405

https://exchange.xforce.ibmcloud.com/vulnerabilities/96194

https://security.gentoo.org/glsa/201504-01

Details

Source: MITRE

Published: 2014-09-25

Updated: 2017-08-29

Type: CWE-310

Risk Information

CVSS v2.0

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

AND

OR

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* versions up to 32.0 (inclusive)

cpe:2.3:a:mozilla:firefox:32.0.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:32.0.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:24.8.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.1.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.2.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.3.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.3.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.4.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.4.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.6:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.6.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.7.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.7.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.7.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.7.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.7.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.9:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.11.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.11.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.11.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.11.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.3.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.3.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.6:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.9:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.10:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.12.11:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.14:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.14.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.14.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.14.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.14.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.14.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.15:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.15.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.15.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.15.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.15.3.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.15.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.15.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.16:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.16.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:*:*:*:*:*:*:*:* versions up to 3.16.2.0 (inclusive)

cpe:2.3:a:mozilla:network_security_services:3.16.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:3.16.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1:alpha:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1:beta:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.14:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.16:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.17:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.18:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.1.19:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.5.0.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.5.0.9:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:1.5.0.10:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.6:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.9:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.10:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.11:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.12:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.13:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.0.14:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:alpha1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:alpha2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:alpha3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:rc1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.1:rc2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.2:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.2:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.2:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.10:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.10:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.10:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.10:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.10.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.11:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.11:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.11:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.11:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.11:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.11:beta5:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.11:beta6:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12:beta5:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12:beta6:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.12.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13:beta5:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13:beta6:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.13.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.14:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.14:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.14:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.14:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.14:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.14:beta5:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15:beta5:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15:beta6:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.15.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16:beta5:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.16.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.17:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.17:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.17:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.17:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.17:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.17.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.18:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.18:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.18:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.18:beta4:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.19:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.19:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.19:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.20:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.20:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.20:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.20:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.21:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.21:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.22:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.22:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.22.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.23:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.23:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.24:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.24:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.25:-:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.25:beta1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.25:beta2:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.25:beta3:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.26:-:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:2.26:rc1:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:*:-:*:*:*:*:*:* versions up to 2.29 (inclusive)

cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* versions up to 24.8.0 (inclusive)

cpe:2.3:a:mozilla:thunderbird:31.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:thunderbird:31.1.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:thunderbird:31.1.1:*:*:*:*:*:*:*

Configuration 3

AND

OR

cpe:2.3:a:google:chrome:37.0.2062.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:37.0.2062.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:37.0.2062.20:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:37.0.2062.100:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:37.0.2062.102:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR

cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*

Tenable Plugins

View all (51 total)

IDNameProductFamilySeverity
701238Mozilla Firefox ESR < 24.8.1 RSA Signature Forgery in NSSNessus Network MonitorWeb Clients
high
91778Juniper Junos Space < 15.1R1 Multiple Vulnerabilities (JSA10698)NessusJunos Local Security Checks
critical
91747OracleVM 3.2 : nss (OVMSA-2016-0066)NessusOracleVM Local Security Checks
high
83849SUSE SLED12 / SLES12 Security Update : MozillaFirefox / mozilla-nss (SUSE-SU-2014:1510-1)NessusSuSE Local Security Checks
high
82995Oracle iPlanet Web Server 7.0.x < 7.0.21 NSS Signature Verification VulnerabilityNessusWeb Servers
high
82994Oracle iPlanet Web Proxy Server 4.0 < 4.0.25 NSS Signature Verification VulnerabilityNessusWindows
high
82902Oracle GlassFish Server Multiple Vulnerabilities (April 2015 CPU) (POODLE)NessusWeb Servers
high
82632GLSA-201504-01 : Mozilla Products: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
82207Debian DLA-62-1 : nss security updateNessusDebian Local Security Checks
high
81942Mandriva Linux Security Advisory : nss (MDVSA-2015:059)NessusMandriva Local Security Checks
critical
80007OracleVM 3.3 : nss (OVMSA-2014-0082)NessusOracleVM Local Security Checks
high
79540OracleVM 3.3 : nss (OVMSA-2014-0023)NessusOracleVM Local Security Checks
high
79055RHEL 4 / 5 / 6 : nss (RHSA-2014:1371)NessusRed Hat Local Security Checks
high
79053RHEL 6 : rhev-hypervisor6 (RHSA-2014:1354) (Shellshock)NessusRed Hat Local Security Checks
critical
78368Fedora 19 : nss-3.17.1-1.fc19 / nss-softokn-3.17.1-2.fc19 / nss-util-3.17.1-1.fc19 (2014-11565)NessusFedora Local Security Checks
high
78367Amazon Linux AMI : nss (ALAS-2014-424)NessusAmazon Linux Local Security Checks
high
78366Amazon Linux AMI : nss-softokn (ALAS-2014-423)NessusAmazon Linux Local Security Checks
high
78365Amazon Linux AMI : nss-util (ALAS-2014-422)NessusAmazon Linux Local Security Checks
high
8412Mozilla Thunderbird < 31.1.2 RSA Signature Forgery in NSSNessus Network MonitorSMTP Clients
high
8411SeaMonkey < 2.29.1 RSA Signature Forgery in NSSNessus Network MonitorWeb Clients
high
8410Google Chrome < 37.0.2062.124 RSA Signature Forgery in NSSNessus Network MonitorWeb Clients
high
77965openSUSE Security Update : mozilla-nss (openSUSE-SU-2014:1232-1)NessusSuSE Local Security Checks
high
77959SuSE 11.3 Security Update : mozilla-nss (SAT Patch Number 9777)NessusSuSE Local Security Checks
high
77957Scientific Linux Security Update : nss on SL5.x, SL6.x i386/x86_64 (20140926)NessusScientific Linux Local Security Checks
high
77952Oracle Linux 5 / 6 / 7 : nss (ELSA-2014-1307)NessusOracle Linux Local Security Checks
high
77944Fedora 21 : nss-3.17.1-1.fc21 / nss-softokn-3.17.1-2.fc21 / nss-util-3.17.1-1.fc21 (2014-11632)NessusFedora Local Security Checks
high
77940Fedora 20 : nss-3.17.1-1.fc20 / nss-softokn-3.17.1-2.fc20 / nss-util-3.17.1-1.fc20 (2014-11518)NessusFedora Local Security Checks
high
77920Debian DSA-3037-1 : icedove - security updateNessusDebian Local Security Checks
high
77918CentOS 5 / 6 / 7 : nss (CESA-2014:1307)NessusCentOS Local Security Checks
high
77909SeaMonkey < 2.29.1 NSS Signature Verification VulnerabilityNessusWindows
high
77908Mozilla Thunderbird < 31.1.2 NSS Signature Verification VulnerabilityNessusWindows
high
77907Mozilla Thunderbird 24.x < 24.8.1 NSS Signature Verification VulnerabilityNessusWindows
high
77906Firefox < 32.0.3 NSS Signature Verification VulnerabilityNessusWindows
high
77905Firefox ESR 31.x < 31.1.1 NSS Signature Verification VulnerabilityNessusWindows
high
77904Firefox ESR 24.x < 24.8.1 NSS Signature Verification VulnerabilityNessusWindows
high
77903Mozilla Thunderbird < 31.1.2 NSS Signature Verification Vulnerability (Mac OS X)NessusMacOS X Local Security Checks
high
77902Mozilla Thunderbird 24.x < 24.8.1 NSS Signature Verification Vulnerability (Mac OS X)NessusMacOS X Local Security Checks
high
77901Firefox < 32.0.3 NSS Signature Verification Vulnerability (Mac OS X)NessusMacOS X Local Security Checks
high
77900Firefox ESR 31.x < 31.1.1 NSS Signature Verification Vulnerability (Mac OS X)NessusMacOS X Local Security Checks
high
77899Firefox ESR 24.x < 24.8.1 NSS Signature Verification Vulnerability (Mac OS X)NessusMacOS X Local Security Checks
high
77896RHEL 5 / 6 / 7 : nss (RHSA-2014:1307)NessusRed Hat Local Security Checks
high
77889Mandriva Linux Security Advisory : nss (MDVSA-2014:189)NessusMandriva Local Security Checks
high
77884FreeBSD : chromium -- RSA signature malleability in NSS (bd2ef267-4485-11e4-b0b7-00262d5ed8ee)NessusFreeBSD Local Security Checks
high
77883FreeBSD : NSS -- RSA Signature Forgery (48108fb0-751c-4cbb-8f33-09239ead4b55)NessusFreeBSD Local Security Checks
high
77881Debian DSA-3034-1 : iceweasel - security updateNessusDebian Local Security Checks
high
77880Debian DSA-3033-1 : nss - security updateNessusDebian Local Security Checks
high
77862Google Chrome < 37.0.2062.124 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
high
77861Google Chrome < 37.0.2062.124 Multiple VulnerabilitiesNessusWindows
high
77853Ubuntu 10.04 LTS / 12.04 LTS / 14.04 LTS : nss vulnerability (USN-2361-1)NessusUbuntu Local Security Checks
high
77852Ubuntu 12.04 LTS / 14.04 LTS : thunderbird vulnerabilities (USN-2360-2)NessusUbuntu Local Security Checks
high
77851Ubuntu 12.04 LTS / 14.04 LTS : firefox vulnerabilities (USN-2360-1)NessusUbuntu Local Security Checks
high