Vulnerabilites related to mozilla - netscape_portable_runtime
cve-2014-1545
Vulnerability from cvelistv5
Published
2014-06-11 10:00
Modified
2024-08-06 09:42
Severity ?
EPSS score ?
Summary
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T09:42:36.276Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "59229",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59229"
},
{
"name": "openSUSE-SU-2014:0819",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html"
},
{
"name": "SUSE-SU-2014:0824",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html"
},
{
"name": "59387",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59387"
},
{
"name": "67975",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/67975"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1018783"
},
{
"name": "DSA-2962",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2014/dsa-2962"
},
{
"name": "openSUSE-SU-2014:0855",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html"
},
{
"name": "openSUSE-SU-2014:0797",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html"
},
{
"name": "59614",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59614"
},
{
"name": "GLSA-201504-01",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"name": "1030404",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1030404"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"
},
{
"name": "openSUSE-SU-2014:0858",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html"
},
{
"name": "59377",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59377"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mozilla.org/security/announce/2014/mfsa2014-55.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1107432"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"name": "DSA-2960",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2014/dsa-2960"
},
{
"name": "DSA-2955",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2014/dsa-2955"
},
{
"name": "59318",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59318"
},
{
"name": "58984",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/58984"
},
{
"name": "59425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59425"
},
{
"name": "59275",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59275"
},
{
"name": "59486",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59486"
},
{
"name": "USN-2265-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-2265-1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-06-10T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-27T18:57:01",
"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"shortName": "mozilla"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "59229",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59229"
},
{
"name": "openSUSE-SU-2014:0819",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html"
},
{
"name": "SUSE-SU-2014:0824",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html"
},
{
"name": "59387",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59387"
},
{
"name": "67975",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/67975"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1018783"
},
{
"name": "DSA-2962",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2014/dsa-2962"
},
{
"name": "openSUSE-SU-2014:0855",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html"
},
{
"name": "openSUSE-SU-2014:0797",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html"
},
{
"name": "59614",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59614"
},
{
"name": "GLSA-201504-01",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"name": "1030404",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1030404"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"
},
{
"name": "openSUSE-SU-2014:0858",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html"
},
{
"name": "59377",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59377"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mozilla.org/security/announce/2014/mfsa2014-55.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1107432"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"name": "DSA-2960",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2014/dsa-2960"
},
{
"name": "DSA-2955",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2014/dsa-2955"
},
{
"name": "59318",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59318"
},
{
"name": "58984",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/58984"
},
{
"name": "59425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59425"
},
{
"name": "59275",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59275"
},
{
"name": "59486",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59486"
},
{
"name": "USN-2265-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-2265-1"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2014-1545",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "59229",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59229"
},
{
"name": "openSUSE-SU-2014:0819",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html"
},
{
"name": "SUSE-SU-2014:0824",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html"
},
{
"name": "59387",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59387"
},
{
"name": "67975",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/67975"
},
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1018783",
"refsource": "CONFIRM",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1018783"
},
{
"name": "DSA-2962",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-2962"
},
{
"name": "openSUSE-SU-2014:0855",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html"
},
{
"name": "openSUSE-SU-2014:0797",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html"
},
{
"name": "59614",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59614"
},
{
"name": "GLSA-201504-01",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"name": "1030404",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1030404"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"
},
{
"name": "openSUSE-SU-2014:0858",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html"
},
{
"name": "59377",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59377"
},
{
"name": "http://www.mozilla.org/security/announce/2014/mfsa2014-55.html",
"refsource": "CONFIRM",
"url": "http://www.mozilla.org/security/announce/2014/mfsa2014-55.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1107432",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1107432"
},
{
"name": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761",
"refsource": "CONFIRM",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"name": "DSA-2960",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-2960"
},
{
"name": "DSA-2955",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-2955"
},
{
"name": "59318",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59318"
},
{
"name": "58984",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/58984"
},
{
"name": "59425",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59425"
},
{
"name": "59275",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59275"
},
{
"name": "59486",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59486"
},
{
"name": "USN-2265-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2265-1"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"assignerShortName": "mozilla",
"cveId": "CVE-2014-1545",
"datePublished": "2014-06-11T10:00:00",
"dateReserved": "2014-01-16T00:00:00",
"dateUpdated": "2024-08-06T09:42:36.276Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2013-5607
Vulnerability from cvelistv5
Published
2013-11-20 11:00
Modified
2024-08-06 17:15
Severity ?
EPSS score ?
Summary
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T17:15:21.405Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "DSA-2820",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2013/dsa-2820"
},
{
"name": "GLSA-201504-01",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"name": "USN-2087-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-2087-1"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=927687"
},
{
"name": "GLSA-201406-19",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201406-19.xml"
},
{
"name": "USN-2031-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-2031-1"
},
{
"name": "USN-2032-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-2032-1"
},
{
"name": "RHSA-2013:1791",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-1791.html"
},
{
"name": "[dev-tech-nspr] 20131113 [ANNOUNCE] NSPR 4.10.2 Release",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/_8AcygMEjSA/mm_cqQzLPFQJ"
},
{
"name": "SUSE-SU-2013:1807",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00000.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html"
},
{
"name": "openSUSE-SU-2013:1732",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00080.html"
},
{
"name": "63802",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/63802"
},
{
"name": "RHSA-2013:1829",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-1829.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2013-11-13T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-01-08T21:57:01",
"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"shortName": "mozilla"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "DSA-2820",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2013/dsa-2820"
},
{
"name": "GLSA-201504-01",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"name": "USN-2087-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-2087-1"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=927687"
},
{
"name": "GLSA-201406-19",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201406-19.xml"
},
{
"name": "USN-2031-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-2031-1"
},
{
"name": "USN-2032-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-2032-1"
},
{
"name": "RHSA-2013:1791",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-1791.html"
},
{
"name": "[dev-tech-nspr] 20131113 [ANNOUNCE] NSPR 4.10.2 Release",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/_8AcygMEjSA/mm_cqQzLPFQJ"
},
{
"name": "SUSE-SU-2013:1807",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00000.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html"
},
{
"name": "openSUSE-SU-2013:1732",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00080.html"
},
{
"name": "63802",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/63802"
},
{
"name": "RHSA-2013:1829",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-1829.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2013-5607",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "DSA-2820",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2013/dsa-2820"
},
{
"name": "GLSA-201504-01",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"name": "USN-2087-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2087-1"
},
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=927687",
"refsource": "CONFIRM",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=927687"
},
{
"name": "GLSA-201406-19",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201406-19.xml"
},
{
"name": "USN-2031-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2031-1"
},
{
"name": "USN-2032-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2032-1"
},
{
"name": "RHSA-2013:1791",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1791.html"
},
{
"name": "[dev-tech-nspr] 20131113 [ANNOUNCE] NSPR 4.10.2 Release",
"refsource": "MLIST",
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/_8AcygMEjSA/mm_cqQzLPFQJ"
},
{
"name": "SUSE-SU-2013:1807",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00000.html"
},
{
"name": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761",
"refsource": "CONFIRM",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"name": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html",
"refsource": "CONFIRM",
"url": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html"
},
{
"name": "openSUSE-SU-2013:1732",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00080.html"
},
{
"name": "63802",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/63802"
},
{
"name": "RHSA-2013:1829",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1829.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"assignerShortName": "mozilla",
"cveId": "CVE-2013-5607",
"datePublished": "2013-11-20T11:00:00",
"dateReserved": "2013-08-26T00:00:00",
"dateUpdated": "2024-08-06T17:15:21.405Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2016-1951
Vulnerability from cvelistv5
Published
2016-08-07 19:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
References
| ▼ | URL | Tags |
|---|---|---|
| https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/dV4MyMsg6jw/hhWcXOgJDQAJ | mailing-list, x_refsource_MLIST | |
| http://www.securityfocus.com/bid/92385 | vdb-entry, x_refsource_BID | |
| http://www.securitytracker.com/id/1036590 | vdb-entry, x_refsource_SECTRACK | |
| https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2 | x_refsource_CONFIRM | |
| https://bugzilla.mozilla.org/show_bug.cgi?id=1174015 | x_refsource_CONFIRM | |
| http://www.ubuntu.com/usn/USN-3023-1 | vendor-advisory, x_refsource_UBUNTU |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T23:10:40.392Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[dev-tech-nspr] 20160217 [ANNOUNCE] NSPR 4.12 Release",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/dV4MyMsg6jw/hhWcXOgJDQAJ"
},
{
"name": "92385",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/92385"
},
{
"name": "1036590",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1036590"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1174015"
},
{
"name": "USN-3023-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-3023-1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-02-17T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-11-25T20:57:01",
"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"shortName": "mozilla"
},
"references": [
{
"name": "[dev-tech-nspr] 20160217 [ANNOUNCE] NSPR 4.12 Release",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/dV4MyMsg6jw/hhWcXOgJDQAJ"
},
{
"name": "92385",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/92385"
},
{
"name": "1036590",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1036590"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1174015"
},
{
"name": "USN-3023-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-3023-1"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2016-1951",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[dev-tech-nspr] 20160217 [ANNOUNCE] NSPR 4.12 Release",
"refsource": "MLIST",
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/dV4MyMsg6jw/hhWcXOgJDQAJ"
},
{
"name": "92385",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/92385"
},
{
"name": "1036590",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1036590"
},
{
"name": "https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2",
"refsource": "CONFIRM",
"url": "https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2"
},
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1174015",
"refsource": "CONFIRM",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1174015"
},
{
"name": "USN-3023-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3023-1"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"assignerShortName": "mozilla",
"cveId": "CVE-2016-1951",
"datePublished": "2016-08-07T19:00:00",
"dateReserved": "2016-01-20T00:00:00",
"dateUpdated": "2024-08-05T23:10:40.392Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Vulnerability from fkie_nvd
Published
2014-06-11 10:57
Modified
2024-11-21 02:04
Severity ?
Summary
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C90F4B54-8069-4C12-801E-72C5F44C20F1",
"versionEndIncluding": "4.10.5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "DC289B78-75DE-4E4F-939F-6137D3EAADAD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "15224A3C-9D36-4745-BC74-93BEB25CA16B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "79F29076-6281-4D7E-85BF-DF9C5156FF37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "AAC77EDF-B784-4993-A574-90190167FE4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "78B722B1-9E46-4EEE-89A0-CA22164F10A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BD77CCE8-1DEC-46F2-AC81-735AE6D5F739",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FCC42F56-9893-4CB7-A379-EB085D342CF4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D2956E2F-266A-4DDD-8503-3BCB7D380888",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "92417164-D89D-45F3-A142-DE62700D4392",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1729CA02-8922-4422-A1DB-0A3BC633DFDD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F07B17A3-EA29-4958-B622-E0A91CBFE134",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "7990E6C0-3604-4DB8-9FAE-74D1F351F171",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.5:*:*:*:*:*:*:*",
"matchCriteriaId": "8C289533-5A05-4572-9DBD-4FC329AB27C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.6:*:*:*:*:*:*:*",
"matchCriteriaId": "CD7CB64F-0A94-402D-A3BC-B36781BAF827",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.7:*:*:*:*:*:*:*",
"matchCriteriaId": "36E8D0AC-BE8F-4ACB-88B2-E30A8C5B07BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.8:*:*:*:*:*:*:*",
"matchCriteriaId": "4C9BB339-69FC-403B-980D-394F3DFF571E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "8C5F3B5E-8DB2-40DB-BDBE-A0254784FD17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3D7BA1AF-43F3-4817-9379-17C795A3098D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A3CA89AC-63BB-4B6D-8CC7-B376D2EBE05C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "71455084-3C16-4626-851D-2FCDE37B6A39",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "6E38E10A-1115-4AAC-B4B2-C776E5EC46EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "A68D5AD0-61A5-4F1C-BA85-72BB9B701E1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "09DD97C6-1E03-4730-BE8D-02BA3CF31E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8:*:*:*:*:*:*:*",
"matchCriteriaId": "D2DCFB0D-DC51-4FD3-967A-62697ECA27E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "9F7F47DB-56FF-4DCB-97C5-7FA2BE027DF2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E66B7D7F-86E3-4FEE-9E30-5E3CE4790B30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "6507F1E2-BBB9-4564-BAFA-007935A6E5BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.5:*:*:*:*:*:*:*",
"matchCriteriaId": "3B2185E8-4321-4E9D-8CF9-DEB830B42D2A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.6:*:*:*:*:*:*:*",
"matchCriteriaId": "DC9334E9-821F-455D-A1D0-C1885599C00F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.7:*:*:*:*:*:*:*",
"matchCriteriaId": "C8B15BC5-04F8-4D30-B196-24BF2EED9F6B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.8:*:*:*:*:*:*:*",
"matchCriteriaId": "035EDC9B-0D4F-4D01-8C67-0F771D6570D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.9:*:*:*:*:*:*:*",
"matchCriteriaId": "9978B12C-258F-4137-BBB1-1DBCB22E105B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "F7395CC8-6110-4FDF-8EFE-8859A6D267C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BCFB9285-B53A-4EE7-BCD5-3C34BE7B5DD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.2:*:*:*:*:*:*:*",
"matchCriteriaId": "73B2FE72-7C9D-4A13-AE00-6AA8D4C870C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.3:*:*:*:*:*:*:*",
"matchCriteriaId": "083C28F7-2BB3-4278-8064-0A9F67B18B5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DE9F027E-40BC-4AD3-BD92-E5493CBA5650",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.5:*:*:*:*:*:*:*",
"matchCriteriaId": "90B78F40-12CE-402C-920F-E99195C85917",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.6:*:*:*:*:*:*:*",
"matchCriteriaId": "6C1814A3-E27A-4BA8-91C7-80906BBB261E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.10:*:*:*:*:*:*:*",
"matchCriteriaId": "72049D4C-762D-4EA4-85F4-983639EA0A38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9520E8B9-0102-4340-BAC0-EB58ACBE37FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.2:*:*:*:*:*:*:*",
"matchCriteriaId": "DDA28422-D9E4-471A-9BF9-71CDB06B1A65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F4121B4C-F211-4632-9AC8-3E74385F14E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.4:*:*:*:*:*:*:*",
"matchCriteriaId": "7998B791-8D38-424D-821B-F190CDFF942F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions."
},
{
"lang": "es",
"value": "Mozilla Netscape Portable Runtime (NSPR) anterior a 4.10.6 permite a atacantes remotos ejecutar c\u00f3digo arbitrario o causar una denegaci\u00f3n de servicio (escritura fuera de rango) a trav\u00e9s de vectores que involucren las funciones sprintf y console."
}
],
"evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/787.html\n\n\"CWE-787: Out-of-bounds Write\"",
"id": "CVE-2014-1545",
"lastModified": "2024-11-21T02:04:32.507",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2014-06-11T10:57:18.220",
"references": [
{
"source": "security@mozilla.org",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"source": "security@mozilla.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html"
},
{
"source": "security@mozilla.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html"
},
{
"source": "security@mozilla.org",
"url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html"
},
{
"source": "security@mozilla.org",
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html"
},
{
"source": "security@mozilla.org",
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/58984"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59229"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59275"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59318"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59377"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59387"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59425"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59486"
},
{
"source": "security@mozilla.org",
"url": "http://secunia.com/advisories/59614"
},
{
"source": "security@mozilla.org",
"url": "http://www.debian.org/security/2014/dsa-2955"
},
{
"source": "security@mozilla.org",
"url": "http://www.debian.org/security/2014/dsa-2960"
},
{
"source": "security@mozilla.org",
"url": "http://www.debian.org/security/2014/dsa-2962"
},
{
"source": "security@mozilla.org",
"tags": [
"Vendor Advisory"
],
"url": "http://www.mozilla.org/security/announce/2014/mfsa2014-55.html"
},
{
"source": "security@mozilla.org",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"
},
{
"source": "security@mozilla.org",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"source": "security@mozilla.org",
"url": "http://www.securityfocus.com/bid/67975"
},
{
"source": "security@mozilla.org",
"url": "http://www.securitytracker.com/id/1030404"
},
{
"source": "security@mozilla.org",
"url": "http://www.ubuntu.com/usn/USN-2265-1"
},
{
"source": "security@mozilla.org",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1018783"
},
{
"source": "security@mozilla.org",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1107432"
},
{
"source": "security@mozilla.org",
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/58984"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59229"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59275"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59318"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59377"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59387"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59425"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59486"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59614"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2014/dsa-2955"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2014/dsa-2960"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2014/dsa-2962"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.mozilla.org/security/announce/2014/mfsa2014-55.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/67975"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1030404"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-2265-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1018783"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1107432"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201504-01"
}
],
"sourceIdentifier": "security@mozilla.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2013-11-20 14:12
Modified
2024-11-21 01:57
Severity ?
Summary
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B8D9588D-0C43-4477-81B9-D4F570D0AF9E",
"versionEndIncluding": "4.10.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "DC289B78-75DE-4E4F-939F-6137D3EAADAD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "15224A3C-9D36-4745-BC74-93BEB25CA16B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "79F29076-6281-4D7E-85BF-DF9C5156FF37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "AAC77EDF-B784-4993-A574-90190167FE4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "78B722B1-9E46-4EEE-89A0-CA22164F10A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BD77CCE8-1DEC-46F2-AC81-735AE6D5F739",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FCC42F56-9893-4CB7-A379-EB085D342CF4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D2956E2F-266A-4DDD-8503-3BCB7D380888",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "92417164-D89D-45F3-A142-DE62700D4392",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1729CA02-8922-4422-A1DB-0A3BC633DFDD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F07B17A3-EA29-4958-B622-E0A91CBFE134",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "7990E6C0-3604-4DB8-9FAE-74D1F351F171",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.5:*:*:*:*:*:*:*",
"matchCriteriaId": "8C289533-5A05-4572-9DBD-4FC329AB27C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.6:*:*:*:*:*:*:*",
"matchCriteriaId": "CD7CB64F-0A94-402D-A3BC-B36781BAF827",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.7:*:*:*:*:*:*:*",
"matchCriteriaId": "36E8D0AC-BE8F-4ACB-88B2-E30A8C5B07BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.8:*:*:*:*:*:*:*",
"matchCriteriaId": "4C9BB339-69FC-403B-980D-394F3DFF571E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "8C5F3B5E-8DB2-40DB-BDBE-A0254784FD17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3D7BA1AF-43F3-4817-9379-17C795A3098D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A3CA89AC-63BB-4B6D-8CC7-B376D2EBE05C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "71455084-3C16-4626-851D-2FCDE37B6A39",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "6E38E10A-1115-4AAC-B4B2-C776E5EC46EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "A68D5AD0-61A5-4F1C-BA85-72BB9B701E1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "09DD97C6-1E03-4730-BE8D-02BA3CF31E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8:*:*:*:*:*:*:*",
"matchCriteriaId": "D2DCFB0D-DC51-4FD3-967A-62697ECA27E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "9F7F47DB-56FF-4DCB-97C5-7FA2BE027DF2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E66B7D7F-86E3-4FEE-9E30-5E3CE4790B30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "6507F1E2-BBB9-4564-BAFA-007935A6E5BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.5:*:*:*:*:*:*:*",
"matchCriteriaId": "3B2185E8-4321-4E9D-8CF9-DEB830B42D2A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.6:*:*:*:*:*:*:*",
"matchCriteriaId": "DC9334E9-821F-455D-A1D0-C1885599C00F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.7:*:*:*:*:*:*:*",
"matchCriteriaId": "C8B15BC5-04F8-4D30-B196-24BF2EED9F6B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.8:*:*:*:*:*:*:*",
"matchCriteriaId": "035EDC9B-0D4F-4D01-8C67-0F771D6570D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.9:*:*:*:*:*:*:*",
"matchCriteriaId": "9978B12C-258F-4137-BBB1-1DBCB22E105B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "F7395CC8-6110-4FDF-8EFE-8859A6D267C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BCFB9285-B53A-4EE7-BCD5-3C34BE7B5DD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.2:*:*:*:*:*:*:*",
"matchCriteriaId": "73B2FE72-7C9D-4A13-AE00-6AA8D4C870C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.3:*:*:*:*:*:*:*",
"matchCriteriaId": "083C28F7-2BB3-4278-8064-0A9F67B18B5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DE9F027E-40BC-4AD3-BD92-E5493CBA5650",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.5:*:*:*:*:*:*:*",
"matchCriteriaId": "90B78F40-12CE-402C-920F-E99195C85917",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.6:*:*:*:*:*:*:*",
"matchCriteriaId": "6C1814A3-E27A-4BA8-91C7-80906BBB261E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:4.10:*:*:*:*:*:*:*",
"matchCriteriaId": "72049D4C-762D-4EA4-85F4-983639EA0A38",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*",
"matchCriteriaId": "668DA0DA-B939-4DF3-8707-A6382FD37EB9",
"versionEndIncluding": "2.22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "58EB8E8A-84DE-43AA-B8F0-B585FB73D724",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:*",
"matchCriteriaId": "C19C0BF7-390D-4E2E-BA32-28DFF73C55F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*",
"matchCriteriaId": "5FE5E50C-80ED-4CA7-BC85-8BD2E324D527",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*",
"matchCriteriaId": "FEBF912C-A12E-4DBD-84AC-8B440E190BCE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*",
"matchCriteriaId": "9B8EDED6-29EF-4A9F-955D-F5E6611C2141",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*",
"matchCriteriaId": "EDC9C82D-586A-48F4-B540-1E2AE79806B3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "51FCF83B-630A-4413-BFAA-0C24A6B8F4F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "84B2AA0A-0220-49DD-82CD-37FDC563F146",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "D754AF10-1E43-46C8-A444-E7DB3401509D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "34182167-F1DF-455B-BFDB-0A8491590479",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "B8ECA6CE-20D0-4A4F-B376-888A9328B044",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "1FEFCAB0-E57A-46E8-94C7-8510BB87C6B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "9FB5C972-AF7B-4EC7-BCE5-867CACCF5C19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "C68DBB31-7804-446E-9A53-073E4B74E851",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "31ADCC51-CE05-4EB6-BE8F-B64FD62946A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "387390AE-CF25-47ED-BD36-F42455DE1A4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "78D5F0AD-9974-40A1-942F-0F03A278DAD9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "2C388E6F-148E-4EA5-8D82-7778398122BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "1F1FEB21-60B1-4303-BE19-576CC93B940C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "37F07875-FB5E-4B13-9798-BF9AEBD8A2A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "87FD9961-DA1C-4846-A779-A836C07B98A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "4A40438F-0CF1-4A3E-BAC7-199D72901B53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "20EB46CA-D5DD-4FA8-A234-21C938620F25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:alpha1:*:*:*:*:*:*",
"matchCriteriaId": "635FCE4C-2D15-4FB2-8917-D176B1539024",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:alpha2:*:*:*:*:*:*",
"matchCriteriaId": "E59E74C2-38F2-4B7F-88C0-9919548713B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:alpha3:*:*:*:*:*:*",
"matchCriteriaId": "DB6663ED-4643-4BB7-B281-706C7A0E10F3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:beta1:*:*:*:*:*:*",
"matchCriteriaId": "E7E8003B-C319-4AD0-9D32-DA05346869C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:beta2:*:*:*:*:*:*",
"matchCriteriaId": "E60060B4-2301-497E-B03B-3DF3FBF159AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:beta3:*:*:*:*:*:*",
"matchCriteriaId": "4983E235-19E8-4315-977B-E74CD0BD5F09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "5C0D4ECE-209E-4919-B31C-D8BCCEABC759",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.1:rc2:*:*:*:*:*:*",
"matchCriteriaId": "B02ED302-0410-4F21-99C5-613DF719E7E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.10:*:*:*:*:*:*:*",
"matchCriteriaId": "35F56E95-F0FE-4E47-9C01-4D8E4976B773",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.10:beta1:*:*:*:*:*:*",
"matchCriteriaId": "BEDAE360-E3B8-4BA0-A036-2FCFFEF5D498",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.10:beta2:*:*:*:*:*:*",
"matchCriteriaId": "2E86983D-1903-4792-9F54-1B0B05A944A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.10:beta3:*:*:*:*:*:*",
"matchCriteriaId": "681C9B76-4D67-42B3-9270-5AD6CBD152A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.10.1:*:*:*:*:*:*:*",
"matchCriteriaId": "247FEB6D-34CE-49E8-9B22-D030F0C26DFE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.11:*:*:*:*:*:*:*",
"matchCriteriaId": "FF54558B-D33F-453E-BCAA-7E47A91C3CE8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.11:beta1:*:*:*:*:*:*",
"matchCriteriaId": "01459193-203D-4E26-8741-EF6EDC38A88D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.11:beta2:*:*:*:*:*:*",
"matchCriteriaId": "240DF7DC-D927-49D7-A8D2-38E6F9D1C844",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.11:beta3:*:*:*:*:*:*",
"matchCriteriaId": "8CC53990-A6DE-4549-926F-BB5346FE2A6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.11:beta4:*:*:*:*:*:*",
"matchCriteriaId": "5186C595-0FE6-4F25-B9A6-2CDD743A3357",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.11:beta5:*:*:*:*:*:*",
"matchCriteriaId": "6F630985-334F-4644-965F-DA8BEEE2449D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.11:beta6:*:*:*:*:*:*",
"matchCriteriaId": "3A6519DF-E299-422B-B891-494AE8240ADD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12:*:*:*:*:*:*:*",
"matchCriteriaId": "5DD3A962-E6A6-4681-BD6E-047ABF8CB776",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12:beta1:*:*:*:*:*:*",
"matchCriteriaId": "7ABE95E2-BA65-4E55-A869-875A408A37F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12:beta2:*:*:*:*:*:*",
"matchCriteriaId": "7A4D8392-FC84-4963-B505-676B629992BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12:beta3:*:*:*:*:*:*",
"matchCriteriaId": "5771130B-203B-46A1-A3C9-98BBA17C3654",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12:beta4:*:*:*:*:*:*",
"matchCriteriaId": "8DC8BB2F-487D-40D7-83FD-1CDD373014CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12:beta5:*:*:*:*:*:*",
"matchCriteriaId": "DC43A7E2-20B1-4CBE-815C-BC8A89D5B496",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12:beta6:*:*:*:*:*:*",
"matchCriteriaId": "CBCCCCD0-CB6C-4A82-98F7-017E4F850BE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "884E19F8-0AB3-427F-BDEC-1CDC420D1231",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13:*:*:*:*:*:*:*",
"matchCriteriaId": "BBBBA80F-4CD4-4419-905A-B90AC3F961F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13:beta1:*:*:*:*:*:*",
"matchCriteriaId": "D62B7671-43FC-4D1B-B69D-5D5E2EC205E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13:beta2:*:*:*:*:*:*",
"matchCriteriaId": "04A1E095-5FC4-42B4-998C-F28B3E8D7DC6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13:beta3:*:*:*:*:*:*",
"matchCriteriaId": "8725924E-A1D8-42F6-8577-774056A6EC19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13:beta4:*:*:*:*:*:*",
"matchCriteriaId": "2DC3E936-6BB0-4CBD-A37C-66E4AF62B813",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13:beta5:*:*:*:*:*:*",
"matchCriteriaId": "026603CE-0A59-4668-92F8-0306FCE31B64",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13:beta6:*:*:*:*:*:*",
"matchCriteriaId": "D76D908D-1148-4A65-B9F4-E18B1B01165A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FDA22ED4-5C46-403C-889F-82A52DA1EBB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.13.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3EC30286-5862-4D56-BE7D-44EDCC2BA37B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.14:*:*:*:*:*:*:*",
"matchCriteriaId": "8ED26A20-4DF7-43B4-81EF-6C77A57A85B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.14:beta1:*:*:*:*:*:*",
"matchCriteriaId": "05DA7741-6ED9-4A0C-B2EB-921B01D8F60A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.14:beta2:*:*:*:*:*:*",
"matchCriteriaId": "C343FE1B-1A54-410C-8FE4-110C089529E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.14:beta3:*:*:*:*:*:*",
"matchCriteriaId": "836520C2-C59C-4E37-BBE1-7FA7C5CAA690",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.14:beta4:*:*:*:*:*:*",
"matchCriteriaId": "D055E64F-7CEE-4501-B233-CBC0D5CB6ECD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.14:beta5:*:*:*:*:*:*",
"matchCriteriaId": "27A7DC95-1678-405E-B336-32828BAFC3F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15:*:*:*:*:*:*:*",
"matchCriteriaId": "6289FA43-9A90-41AE-8C0A-C49017B1FC3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15:beta1:*:*:*:*:*:*",
"matchCriteriaId": "25E3AF9B-96E1-4875-8F9F-F17289B17D82",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15:beta2:*:*:*:*:*:*",
"matchCriteriaId": "1E98FD1D-58F0-4832-8BD9-D6561AC4903E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15:beta3:*:*:*:*:*:*",
"matchCriteriaId": "14D92E1E-D0E4-41A0-9126-417FBAE62E9F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15:beta4:*:*:*:*:*:*",
"matchCriteriaId": "9CCCA8B5-5E59-41C2-87C1-0F4A72E9812A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15:beta5:*:*:*:*:*:*",
"matchCriteriaId": "040AFFC7-ED14-49A1-8995-806479C183F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15:beta6:*:*:*:*:*:*",
"matchCriteriaId": "4FA38731-42C7-4B6E-A09B-5B73814190A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9F74CB55-8FA5-4FBC-B37E-69F035282360",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.15.2:*:*:*:*:*:*:*",
"matchCriteriaId": "CDE3356A-EFD5-4651-8FF7-0F79570D3670",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16:*:*:*:*:*:*:*",
"matchCriteriaId": "8EE8DA73-2FEC-4F2B-9264-6DFB663F0950",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16:beta1:*:*:*:*:*:*",
"matchCriteriaId": "7AF84523-CBF7-4F1D-9818-9DAFED30851D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16:beta2:*:*:*:*:*:*",
"matchCriteriaId": "51C344C3-093D-486E-B2BA-47E890FC159B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16:beta3:*:*:*:*:*:*",
"matchCriteriaId": "D7D8ED22-2F5A-408E-995F-D6B046250EC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16:beta4:*:*:*:*:*:*",
"matchCriteriaId": "D7744088-C55D-4006-8A1C-545DF9687A5A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16:beta5:*:*:*:*:*:*",
"matchCriteriaId": "B888F4F3-F5C1-47CB-85EA-BF088B3629FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E2FD7275-C402-4A9D-9A16-C2B0FB7A73E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.16.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C7DFFC99-7534-4B22-87CA-AA8DB1B8123D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.17:*:*:*:*:*:*:*",
"matchCriteriaId": "DE3FE289-6975-4248-881E-12D850B50077",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.17:beta1:*:*:*:*:*:*",
"matchCriteriaId": "B3AA9040-15C9-41C1-AF4B-3162C7550073",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.17:beta2:*:*:*:*:*:*",
"matchCriteriaId": "F4FDE74E-5550-4813-B075-336739C3951D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.17:beta3:*:*:*:*:*:*",
"matchCriteriaId": "39361B4B-0025-4406-8BB7-DACBB3B328DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.17:beta4:*:*:*:*:*:*",
"matchCriteriaId": "9E78246D-2C7D-46E8-AADE-E52AA03B17B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.17.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F9BAB391-BE12-453B-BF4E-4C3957B3BC37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.18:beta1:*:*:*:*:*:*",
"matchCriteriaId": "6A8860F4-4F1A-455D-AD76-53EFF54A7F81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.18:beta2:*:*:*:*:*:*",
"matchCriteriaId": "1ABDBCDB-6495-49B8-9F76-A1BB9B4E557E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.18:beta3:*:*:*:*:*:*",
"matchCriteriaId": "4855BEDC-F221-45EB-9F85-E0FA083B334E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.18:beta4:*:*:*:*:*:*",
"matchCriteriaId": "802D0724-B777-479E-BAB0-16C8FA6BFD08",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.19:*:*:*:*:*:*:*",
"matchCriteriaId": "119C243B-4508-4D1E-8B86-C65EB4E6C1EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.19:beta1:*:*:*:*:*:*",
"matchCriteriaId": "F0D6E1F0-D019-4B5B-9137-D0AE80F4E74F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.19:beta2:*:*:*:*:*:*",
"matchCriteriaId": "94BEE084-0B38-41AF-A836-5C469C1CB7CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.20:*:*:*:*:*:*:*",
"matchCriteriaId": "E2A6E457-DF4C-4D19-9AFF-02695D1A2957",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.20:beta1:*:*:*:*:*:*",
"matchCriteriaId": "B3C9A8AA-BB73-4252-995F-AE183639D949",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.20:beta2:*:*:*:*:*:*",
"matchCriteriaId": "0200DF6D-B067-49DE-BC6A-B1A5EE860454",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.20:beta3:*:*:*:*:*:*",
"matchCriteriaId": "3B64472A-A123-4FF8-A39B-C00F5055C4B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.21:*:*:*:*:*:*:*",
"matchCriteriaId": "91947B7E-A58B-4092-8DA2-E318A698C452",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.21:beta1:*:*:*:*:*:*",
"matchCriteriaId": "D090ED7A-8370-4BBA-B0F7-D322C5189C0B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.21:beta2:*:*:*:*:*:*",
"matchCriteriaId": "3C663466-5C19-4F6B-845A-C41E2ED0FF0F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.22:beta1:*:*:*:*:*:*",
"matchCriteriaId": "90F03D92-608D-4C70-9312-42BA70B13E4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:2.22:beta2:*:*:*:*:*:*",
"matchCriteriaId": "D41DB10E-24E6-47B8-AB36-19F74ACCFB06",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0:*:*:*:*:*:*:*",
"matchCriteriaId": "3283FBAC-B77A-4C62-9D51-70BB35FA3D13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "886D8A1F-ECDD-4FE9-A4E5-2322EEC0B880",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E10B8803-C319-4AAA-81CF-FA206A33BA55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E2B5567C-8969-456D-B6DF-3562B99C41FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "5657779C-19F9-42B8-BBBD-292B898E8FD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "EEA3B9F4-BD8E-488B-A362-0B86BC6DA275",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "6A91BD4A-76BD-40B9-9E12-22CACAAE42BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "84CEB297-BEE9-4BBC-BA91-6AF14DCCA87C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "C1890BA0-0BCD-4B24-805A-7580884CE5B3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "4154D7D4-DAD7-46DB-A2A7-5A3702939865",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:17.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "D316A264-4651-4E8A-904F-447DBDB333D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:24.0:*:*:*:*:*:*:*",
"matchCriteriaId": "18E772D1-DD0F-4F04-8BB4-9550F3C601E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox_esr:24.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A4DE4CBB-6604-4AF2-B499-06BCD9E213C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox_esr:24.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "70ECF11D-B5D0-4EBA-9E1F-0978AF7C7818",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"matchCriteriaId": "27883393-E91D-4663-A6E1-0D37A3B6024F",
"versionEndIncluding": "25.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*",
"matchCriteriaId": "06FF9DFE-491D-4260-8A49-07FD342B9412",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "DE09D089-7F48-466B-B03A-C64152A12615",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "653D73DA-21C0-4C3F-9269-5A6D5C5B1E34",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*",
"matchCriteriaId": "804A0ACE-EB28-413D-93F4-E849FEA01390",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:20.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3BA49C6F-9115-41A5-BBDE-743CB9DEDDA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:21.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7CC8D9A8-D4DB-4BC9-89CE-F3AF742C399F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:22.0:*:*:*:*:*:*:*",
"matchCriteriaId": "ADF6A02E-A85B-48BA-A60C-E92CDA3A8055",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:23.0:*:*:*:*:*:*:*",
"matchCriteriaId": "50127B73-3517-4E82-94E9-FC5AA0DA3357",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:23.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7CBE3FB1-F768-4EEE-A01A-12BB958CDB29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:24.0:*:*:*:*:*:*:*",
"matchCriteriaId": "18E772D1-DD0F-4F04-8BB4-9550F3C601E1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741."
},
{
"lang": "es",
"value": "Desbordamiento de enteros en la funci\u00f3n de PL_ArenaAllocate en Mozilla Netscape Portable Runtime (NSPR) anterior a la versi\u00f3n 4.10.2, tal y como se usa en Firefox anterior a la versi\u00f3n 25.0.1, Firefox ESR 17.x anterior a 17.0.11 y 24.x anterior a la versi\u00f3n 24.1.1, y SeaMonkey anterior a 2.22.1, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de la aplicaci\u00f3n) o posiblemente tener otro impacto no especificado a trav\u00e9s de un certificado X.509 manipulado, un problema relacionado a CVE-2013-1741."
}
],
"id": "CVE-2013-5607",
"lastModified": "2024-11-21T01:57:47.913",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2013-11-20T14:12:50.697",
"references": [
{
"source": "security@mozilla.org",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"source": "security@mozilla.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00000.html"
},
{
"source": "security@mozilla.org",
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00080.html"
},
{
"source": "security@mozilla.org",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1791.html"
},
{
"source": "security@mozilla.org",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1829.html"
},
{
"source": "security@mozilla.org",
"url": "http://security.gentoo.org/glsa/glsa-201406-19.xml"
},
{
"source": "security@mozilla.org",
"url": "http://www.debian.org/security/2013/dsa-2820"
},
{
"source": "security@mozilla.org",
"tags": [
"Vendor Advisory"
],
"url": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html"
},
{
"source": "security@mozilla.org",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"source": "security@mozilla.org",
"url": "http://www.securityfocus.com/bid/63802"
},
{
"source": "security@mozilla.org",
"url": "http://www.ubuntu.com/usn/USN-2031-1"
},
{
"source": "security@mozilla.org",
"url": "http://www.ubuntu.com/usn/USN-2032-1"
},
{
"source": "security@mozilla.org",
"url": "http://www.ubuntu.com/usn/USN-2087-1"
},
{
"source": "security@mozilla.org",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=927687"
},
{
"source": "security@mozilla.org",
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/_8AcygMEjSA/mm_cqQzLPFQJ"
},
{
"source": "security@mozilla.org",
"url": "https://security.gentoo.org/glsa/201504-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10761"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00000.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00080.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1791.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1829.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://security.gentoo.org/glsa/glsa-201406-19.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2013/dsa-2820"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/63802"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-2031-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-2032-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-2087-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=927687"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/_8AcygMEjSA/mm_cqQzLPFQJ"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201504-01"
}
],
"sourceIdentifier": "security@mozilla.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-189"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2016-08-07 19:59
Modified
2024-11-21 02:47
Severity ?
Summary
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mozilla | netscape_portable_runtime | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:netscape_portable_runtime:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5A240ADC-6908-4C02-BD1C-87D031C7A410",
"versionEndIncluding": "4.11",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function."
},
{
"lang": "es",
"value": "M\u00faltiples desbordamientos de entero en io/prprf.c en Mozilla Netscape Portable Runtime (NSPR) en versiones anteriores a 4.12 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (desbordamiento de b\u00fafer) o posiblemente tener otro impacto no especificado a trav\u00e9s de una cadena larga a una funci\u00f3n PR_*printf."
}
],
"id": "CVE-2016-1951",
"lastModified": "2024-11-21T02:47:25.177",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": true,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 4.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-08-07T19:59:00.127",
"references": [
{
"source": "security@mozilla.org",
"url": "http://www.securityfocus.com/bid/92385"
},
{
"source": "security@mozilla.org",
"url": "http://www.securitytracker.com/id/1036590"
},
{
"source": "security@mozilla.org",
"url": "http://www.ubuntu.com/usn/USN-3023-1"
},
{
"source": "security@mozilla.org",
"tags": [
"Issue Tracking"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1174015"
},
{
"source": "security@mozilla.org",
"tags": [
"Mailing List"
],
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/dV4MyMsg6jw/hhWcXOgJDQAJ"
},
{
"source": "security@mozilla.org",
"url": "https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/92385"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1036590"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-3023-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1174015"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List"
],
"url": "https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/dV4MyMsg6jw/hhWcXOgJDQAJ"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2"
}
],
"sourceIdentifier": "security@mozilla.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-190"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}