Release date:
Updated on:
Affected Systems:
Mozilla Network Security Services
Description:
--------------------------------------------------------------------------------
Bugtraq id: 66366
The Network Security Service (NSS) is a set of libraries for client and server applications that enable security for cross-platform development. Applications compiled with NSS can support security standards such as SSLv2, SSLv3, and TLS.
Mozilla Network Security Services has the remote memory corruption vulnerability in the implementation of p12creat. c. After successful exploitation, attackers can execute arbitrary code in the context of the affected application users.
<* Source: vendor
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Mozilla
-------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.mozilla.org/security/