CVE Vulnerabilities

CVE-2004-0826

Published: Dec 31, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.

Affected Software

Name Vendor Start Version End Version
Network_security_services Mozilla 3.2 (including) 3.2 (including)
Network_security_services Mozilla 3.2.1 (including) 3.2.1 (including)
Network_security_services Mozilla 3.3 (including) 3.3 (including)
Network_security_services Mozilla 3.3.1 (including) 3.3.1 (including)
Network_security_services Mozilla 3.3.2 (including) 3.3.2 (including)
Network_security_services Mozilla 3.4 (including) 3.4 (including)
Network_security_services Mozilla 3.4.1 (including) 3.4.1 (including)
Network_security_services Mozilla 3.4.2 (including) 3.4.2 (including)
Network_security_services Mozilla 3.5 (including) 3.5 (including)
Network_security_services Mozilla 3.6 (including) 3.6 (including)
Network_security_services Mozilla 3.6.1 (including) 3.6.1 (including)
Network_security_services Mozilla 3.7 (including) 3.7 (including)
Network_security_services Mozilla 3.7.1 (including) 3.7.1 (including)
Network_security_services Mozilla 3.7.2 (including) 3.7.2 (including)
Network_security_services Mozilla 3.7.3 (including) 3.7.3 (including)
Network_security_services Mozilla 3.7.5 (including) 3.7.5 (including)
Network_security_services Mozilla 3.7.7 (including) 3.7.7 (including)
Network_security_services Mozilla 3.8 (including) 3.8 (including)
Network_security_services Mozilla 3.9 (including) 3.9 (including)
Certificate_server Netscape 1.0-patch1 (including) 1.0-patch1 (including)
Certificate_server Netscape 4.2 (including) 4.2 (including)
Directory_server Netscape 1.3-patch5 (including) 1.3-patch5 (including)
Directory_server Netscape 3.1-patch1 (including) 3.1-patch1 (including)
Directory_server Netscape 3.12 (including) 3.12 (including)
Directory_server Netscape 4.1 (including) 4.1 (including)
Directory_server Netscape 4.11 (including) 4.11 (including)
Directory_server Netscape 4.13 (including) 4.13 (including)
Enterprise_server Netscape 2.0 (including) 2.0 (including)
Enterprise_server Netscape 2.0.1c (including) 2.0.1c (including)
Enterprise_server Netscape 2.0a (including) 2.0a (including)
Enterprise_server Netscape 3.0 (including) 3.0 (including)
Enterprise_server Netscape 3.0.1 (including) 3.0.1 (including)
Enterprise_server Netscape 3.0.1b (including) 3.0.1b (including)
Enterprise_server Netscape 3.0.7a (including) 3.0.7a (including)
Enterprise_server Netscape 3.0l (including) 3.0l (including)
Enterprise_server Netscape 3.1 (including) 3.1 (including)
Enterprise_server Netscape 3.2 (including) 3.2 (including)
Enterprise_server Netscape 3.3 (including) 3.3 (including)
Enterprise_server Netscape 3.4 (including) 3.4 (including)
Enterprise_server Netscape 3.5 (including) 3.5 (including)
Enterprise_server Netscape 3.5.1 (including) 3.5.1 (including)
Enterprise_server Netscape 3.6 (including) 3.6 (including)
Enterprise_server Netscape 3.6-sp1 (including) 3.6-sp1 (including)
Enterprise_server Netscape 3.6-sp2 (including) 3.6-sp2 (including)
Enterprise_server Netscape 3.6-sp3 (including) 3.6-sp3 (including)
Enterprise_server Netscape 4.0 (including) 4.0 (including)
Enterprise_server Netscape 4.1-sp3 (including) 4.1-sp3 (including)
Enterprise_server Netscape 4.1-sp4 (including) 4.1-sp4 (including)
Enterprise_server Netscape 4.1-sp5 (including) 4.1-sp5 (including)
Enterprise_server Netscape 4.1-sp6 (including) 4.1-sp6 (including)
Enterprise_server Netscape 4.1-sp7 (including) 4.1-sp7 (including)
Enterprise_server Netscape 4.1-sp8 (including) 4.1-sp8 (including)
Enterprise_server Netscape 4.1.1 (including) 4.1.1 (including)
Enterprise_server Netscape 5.0 (including) 5.0 (including)
Personalization_engine Netscape * *
Java_enterprise_system Sun 2003q4 (including) 2003q4 (including)
Java_enterprise_system Sun 2004q2 (including) 2004q2 (including)
Java_system_application_server Sun 7.0 (including) 7.0 (including)
Java_system_application_server Sun 7.0-ur4 (including) 7.0-ur4 (including)
Java_system_application_server Sun 7.1 (including) 7.1 (including)
One_application_server Sun 6.0 (including) 6.0 (including)
One_application_server Sun 6.0-sp1 (including) 6.0-sp1 (including)
One_application_server Sun 6.0-sp2 (including) 6.0-sp2 (including)
One_web_server Sun 4.1 (including) 4.1 (including)
One_web_server Sun 4.1-sp1 (including) 4.1-sp1 (including)
One_web_server Sun 4.1-sp10 (including) 4.1-sp10 (including)
One_web_server Sun 4.1-sp11 (including) 4.1-sp11 (including)
One_web_server Sun 4.1-sp12 (including) 4.1-sp12 (including)
One_web_server Sun 4.1-sp13 (including) 4.1-sp13 (including)
One_web_server Sun 4.1-sp14 (including) 4.1-sp14 (including)
One_web_server Sun 4.1-sp2 (including) 4.1-sp2 (including)
One_web_server Sun 4.1-sp3 (including) 4.1-sp3 (including)
One_web_server Sun 4.1-sp4 (including) 4.1-sp4 (including)
One_web_server Sun 4.1-sp5 (including) 4.1-sp5 (including)
One_web_server Sun 4.1-sp6 (including) 4.1-sp6 (including)
One_web_server Sun 4.1-sp7 (including) 4.1-sp7 (including)
One_web_server Sun 4.1-sp8 (including) 4.1-sp8 (including)
One_web_server Sun 4.1-sp9 (including) 4.1-sp9 (including)
One_web_server Sun 6.0-sp3 (including) 6.0-sp3 (including)
One_web_server Sun 6.0-sp4 (including) 6.0-sp4 (including)
One_web_server Sun 6.0-sp5 (including) 6.0-sp5 (including)
One_web_server Sun 6.0-sp7 (including) 6.0-sp7 (including)
One_web_server Sun 6.0-sp8 (including) 6.0-sp8 (including)
One_web_server Sun 6.1 (including) 6.1 (including)
One_web_server Sun 6.1-sp1 (including) 6.1-sp1 (including)
One_web_server Sun 6.1-sp2 (including) 6.1-sp2 (including)

References