CVE-2015-7182 in Communications Messaging Serverinfo

Summary

Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

09/16/2015

Disclosure

11/05/2015

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
89995Oracle Communications Messaging Server Security memory corruption119Not definedOfficial fixCVE-2015-7182
89871Oracle Directory Server Enterprise Edition Admin Server memory corruption119Not definedOfficial fixCVE-2015-7182
82593Oracle iPlanet Web Server Security memory corruption119Not definedOfficial fixCVE-2015-7182
82592Oracle iPlanet Web Proxy Server Security memory corruption119Not definedOfficial fixCVE-2015-7182
82589Oracle Traffic Director Security memory corruption119Not definedOfficial fixCVE-2015-7182
82588Oracle OpenSSO Web Agents memory corruption119Not definedOfficial fixCVE-2015-7182
82587Oracle GlassFish Server Security memory corruption119Not definedOfficial fixCVE-2015-7182
79045Mozilla Firefox OCTET STRING memory corruption119UnprovenOfficial fixCVE-2015-7182

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!