Vulnerability & Exploit Database

Back to search

Netscape/Sun iPlanet NSS SSLv2 client key buffer overflow

Severity CVSS Published Added Modified
7 (AV:N/AC:M/Au:N/C:P/I:P/A:P) February 26, 2007 August 03, 2007 February 13, 2015

Description

Sun iPlanet/Java Web Server is vulnerable to a buffer overflow in its SSLv2 processing (used for HTTPS). The Network Security Services (NSS) library contains an integer underflow error in the parsing of SSL public keys. The result of this integer underflow is a heap-based buffer overflow with the potential to execute arbitrary code on the server.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

iplanet-41-upgrade-sp11

Related Vulnerabilities