Advisories
Research
Forums
Create Profile
Our Commitment
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading

Vulnerability Report: Network Security Services (NSS) 3.x

This vulnerability report for Network Security Services (NSS) 3.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Network Security Services (NSS) 3.x then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2014
2.2. Statistics for 2013
2.3. Statistics for 2012
2.4. Statistics for 2011
2.5. Statistics for 2010
2.6. Statistics for 2009
2.7. Statistics for 2008
2.8. Statistics for 2007
2.9. Statistics for 2006
2.10. Statistics for 2005
2.11. Statistics for 2004
2.12. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2014
3.2. List for 2013
3.3. List for 2012
3.4. List for 2011
3.5. List for 2010
3.6. List for 2009
3.7. List for 2008
3.8. List for 2007
3.9. List for 2006
3.10. List for 2005
3.11. List for 2004
3.12. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Mozilla Foundation

Product Link View Here (Link to external site)

Affected By 15 Secunia advisories
17 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 7% (1 of 15 Secunia advisories)

Most Critical Unpatched
The most severe unpatched Secunia advisory affecting Network Security Services (NSS) 3.x, with all vendor patches applied, is rated Highly critical .




15 Secunia Advisories in 2003-2014

Secunia has issued a total of 15 Secunia advisories in 2003-2014 for Network Security Services (NSS) 3.x. Currently, 7% (1 out of 15) are marked as unpatched with the most severe being rated Highly critical

More information about the specific Secunia advisories affecting Network Security Services (NSS) 3.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



Network Security Services (NSS) NSSCertificate Handling Use-After-Free Vulnerability
Vendor Patch. Secunia Advisory 1 of 3 in 2014. 351 views.
Release Date:
2014-07-25
Secunia Advisory ID:
SA59350
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Network Security Services (NSS), which can be exploited by malicious people to potentially compromise an application using the library. [Read More]


Network Security Services (NSS) Two Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 3 in 2014. 770 views.
Release Date:
2014-03-21
Secunia Advisory ID:
SA57465
Solution Status:
Vendor Patch
Criticality:
Impact:
Spoofing
DoS
System access
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Network Security Services (NSS), which can be exploited by malicious people to conduct spoofing attacks and cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]


Network Security Services (NSS) False Start PR_Recv Information Disclosure Security Issue
Vendor Patch. Secunia Advisory 3 of 3 in 2014. 661 views.
Release Date:
2014-01-14
Secunia Advisory ID:
SA56386
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of sensitive information
Where:
From remote
Short Description:
A security issue has been reported in Network Security Services (NSS), which can be exploited by malicious people to disclose certain sensitive information. [Read More]


Network Security Services (NSS) Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 2 in 2013. 2,132 views.
Release Date:
2013-11-15
Secunia Advisory ID:
SA55557
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
DoS
System access
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Network Security Services (NSS), which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise an application using the library. [Read More]


Network Security Services (NSS) Uninitialized Memory Read Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2013. 2,169 views.
Release Date:
2013-10-11
Secunia Advisory ID:
SA55050
Solution Status:
Vendor Patch
Criticality:
Impact:
Unknown
Where:
From remote
Short Description:
A vulnerability with an unknown impact has been reported in Network Security Services (NSS). [Read More]


Network Security Services ASN.1 Decoder Denial of Service
Vendor Patch. Secunia Advisory 1 of 1 in 2012. 1,022 views.
Release Date:
2012-06-08
Secunia Advisory ID:
SA49288
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Network Security Services (NSS), which can be exploited by malicious people to cause a DoS (Denial of Service) in an application using the library. [Read More]


Network Security Services Insecure Library Loading Vulnerability
Vendor Workaround. Secunia Advisory 1 of 1 in 2011. 3,078 views.
Release Date:
2011-10-21
Secunia Advisory ID:
SA46557
Solution Status:
Vendor Workaround
Criticality:
Impact:
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Network Security Services (NSS), which can be exploited by malicious people to compromise an application using the library. [Read More]


Network Security Services Certificate IP Address Wildcard Matching Vulnerability
Vendor Workaround. Secunia Advisory 1 of 2 in 2010. 3,763 views.
Release Date:
2010-08-31
Secunia Advisory ID:
SA41237
Solution Status:
Vendor Workaround
Criticality:
Impact:
Spoofing
Where:
From remote
Short Description:
A vulnerability has been reported in Network Security Services (NSS), which can be exploited by malicious people to conduct spoofing attacks. [Read More]


Network Security Services (NSS) TLS Session Renegotiation Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2010. 4,213 views.
Release Date:
2010-02-05
Secunia Advisory ID:
SA38400
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Where:
From remote
Short Description:
A vulnerability has been reported in Network Security Services (NSS), which can be exploited by malicious people to manipulate certain data. [Read More]


Network Security Services Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 1 in 2009. 8,327 views.
Release Date:
2009-07-31
Secunia Advisory ID:
SA36093
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Network Security Services, which can potentially be exploited by malicious people to bypass certain security restrictions or to compromise a vulnerable system. [Read More]


Network Security Services SSLv2 Processing Buffer Overflows
Unpatched. Secunia Advisory 1 of 1 in 2007. 16,103 views.
Release Date:
2007-02-24
Secunia Advisory ID:
SA24253
Solution Status:
Unpatched
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Network Security Services (NSS), which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]


Network Security Services (NSS) Signature Forgery Vulnerability
Vendor Patch. Secunia Advisory 1 of 1 in 2006. 16,935 views.
Release Date:
2006-09-15
Secunia Advisory ID:
SA21903
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
A vulnerability has been reported in Network Security Services (NSS), which potentially can be exploited by malicious people to bypass certain security restrictions. [Read More]


Network Security Services (NSS) Library Zlib Vulnerability
Vendor Patch. Secunia Advisory 1 of 1 in 2005. 12,150 views.
Release Date:
2005-10-17
Secunia Advisory ID:
SA17225
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Network Security Services (NSS), which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]


NSS Library SSLv2 Connection Negotiation Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 1 of 2 in 2004. 16,325 views.
Release Date:
2004-08-25
Secunia Advisory ID:
SA12362
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
ISS X-Force has reported a vulnerability in the NSS library, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


Mozilla / NSS S/MIME Implementation Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2004. 26,584 views.
Release Date:
2004-03-11
Secunia Advisory ID:
SA11096
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
A vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system, has been reported in NSS (Network Security Services) security suite and Mozilla browsers shipping vulnerable versions of it. [Read More]





Discuss this Product
A new thread in our forum is automatically created for each Product. Activate the thread by commenting/discussing below.
Subject: Network Security Services (NSS) 3.x 
No posts yet

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability