CVE-2016-1950 in Oracle iPlanet Web Serverinfo

Summary

Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.x and 3.21.x before 3.21.1, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code via crafted ASN.1 data in an X.509 certificate.

Reservation

01/20/2016

Disclosure

03/13/2016

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
92778	Oracle iPlanet Web Server Security memory corruption	119	Not defined	Official fix	CVE-2016-1950
92777	Oracle iPlanet Web Proxy Server Security memory corruption	119	Not defined	Official fix	CVE-2016-1950
92774	Oracle GlassFish Server Security memory corruption	119	Not defined	Official fix	CVE-2016-1950
81510	Apple iOS Security memory corruption	119	Not defined	Official fix	CVE-2016-1950
81480	Apple Mac OS X Security memory corruption	119	Not defined	Official fix	CVE-2016-1950
81239	Mozilla Firefox Network Security Services memory corruption	119	Unproven	Official fix	CVE-2016-1950

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!