CVE-2007-0009

NONECVSS 0.0

0.0

Stack-based buffer overflow in the SSLv2 support in Mozilla Network Security Services (NSS) before 3.11.5, as used by Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, SeaMonkey before 1.0.8, and certain Sun Java System server products before 20070611, allows remote attackers to execute arbitrary code via invalid "Client Master Key" length values.

🔗 References (132)

secalert@redhatftp://patches.sgi.com/support/free/security/advisories/20070202-01-P.asc
secalert@redhatftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.asc
secalert@redhathttp://fedoranews.org/cms/node/2709
secalert@redhathttp://fedoranews.org/cms/node/2711
secalert@redhathttp://fedoranews.org/cms/node/2747
secalert@redhathttp://fedoranews.org/cms/node/2749
secalert@redhathttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
secalert@redhathttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=483
secalert@redhathttp://lists.suse.com/archive/suse-security-announce/2007-Mar/0001.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2007-0077.html
secalert@redhathttp://secunia.com/advisories/24253
secalert@redhathttp://secunia.com/advisories/24277
secalert@redhathttp://secunia.com/advisories/24287
secalert@redhathttp://secunia.com/advisories/24290
secalert@redhathttp://secunia.com/advisories/24293

Is Your Infrastructure Affected by CVE-2007-0009?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-0009

📅 Published

🔄 Last Modified

🔗 References (132)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-0009?