Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nss vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-1968
Integer underflow in Brotli, as used in Mozilla Firefox prior to 45.0, allows remote malicious users to execute arbitrary code or cause a denial of service (buffer overflow) via crafted data with brotli compression.
Mozilla Firefox
1 Github repository
6.8
CVSSv2
CVE-2016-2801
The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp in Graphite 2 prior to 1.3.6, as used in Mozilla Firefox prior to 45.0 and Firefox ESR 38.x prior to 38.7, allows remote malicious users to cause a denial of service (buffer over-read) or possibly have unspecifi...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Suse Linux Enterprise 12.0
Sil Graphite2
Oracle Linux 7
Oracle Linux 5.0
Oracle Linux 6
Mozilla Firefox
Mozilla Firefox Esr 38.6.1
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.1.1
Mozilla Firefox Esr 38.6.0
Mozilla Firefox Esr 38.5.1
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.5.0
Mozilla Firefox Esr 38.4.0
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.2.1
6.8
CVSSv2
CVE-2013-0288
nss-pam-ldapd prior to 0.7.18 and 0.8.x prior to 0.8.11 allows context-dependent malicious users to cause a denial of service (application crash) and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which ...
Arthurdejong Nss-pam-ldapd 0.8.2
Arthurdejong Nss-pam-ldapd 0.8.9
Arthurdejong Nss-pam-ldapd 0.8.7
Arthurdejong Nss-pam-ldapd 0.8.1
Arthurdejong Nss-pam-ldapd 0.8.5
Arthurdejong Nss-pam-ldapd 0.8.3
Arthurdejong Nss-pam-ldapd 0.8.0
Arthurdejong Nss-pam-ldapd 0.8.10
Arthurdejong Nss-pam-ldapd 0.8.4
Arthurdejong Nss-pam-ldapd 0.8.6
Arthurdejong Nss-pam-ldapd 0.8.8
Arthurdejong Nss-pam-ldapd 0.2.1
Arthurdejong Nss-pam-ldapd 0.6.10
Arthurdejong Nss-pam-ldapd 0.6.5
Arthurdejong Nss-pam-ldapd 0.7.10
Arthurdejong Nss-pam-ldapd 0.7.7
Arthurdejong Nss-pam-ldapd 0.7.15
Arthurdejong Nss-pam-ldapd 0.6.8
Arthurdejong Nss-pam-ldapd 0.6.7.1
Arthurdejong Nss-pam-ldapd 0.7.8
Arthurdejong Nss-pam-ldapd 0.6.0
Arthurdejong Nss-pam-ldapd 0.2
6.8
CVSSv2
CVE-2011-0438
nslcd/pam.c in the nss-pam-ldapd 0.8.0 PAM module returns a success code when a user is not found in LDAP, which allows remote malicious users to bypass authentication.
Arthurdejong Nss-pam-ldapd 0.8.0
6.8
CVSSv2
CVE-2009-2408
Mozilla Network Security Services (NSS) prior to 3.12.3, Firefox prior to 3.0.13, Thunderbird prior to 2.0.0.23, and SeaMonkey prior to 1.1.18 do not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, ...
Mozilla Network Security Services
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Suse Linux Enterprise Server 9
Suse Linux Enterprise 11.0
Suse Linux Enterprise 10.0
Opensuse Opensuse
Debian Debian Linux 5.0
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
6.8
CVSSv2
CVE-2008-3532
The NSS plugin in libpurple in Pidgin 2.4.3 does not verify SSL certificates, which makes it easier for remote malicious users to trick a user into accepting an invalid server certificate for a spoofed service.
Pidgin Pidgin 2.4.3
6.8
CVSSv2
CVE-2007-0994
A regression error in Mozilla Firefox 2.x prior to 2.0.0.2 and 1.x prior to 1.5.0.10, and SeaMonkey 1.1 prior to 1.1.1 and 1.0 prior to 1.0.8, allows remote malicious users to execute arbitrary JavaScript as the user via an HTML mail message with a javascript: URI in an (1) img, ...
Mozilla Seamonkey
Mozilla Firefox
Debian Debian Linux 3.1
6.8
CVSSv2
CVE-2007-0008
Integer underflow in the SSLv2 support in Mozilla Network Security Services (NSS) prior to 3.11.5, as used by Firefox prior to 1.5.0.10 and 2.x prior to 2.0.0.2, SeaMonkey prior to 1.0.8, Thunderbird prior to 1.5.0.10, and certain Sun Java System server products prior to 20070611...
Mozilla Firefox
Mozilla Network Security Services 3.11.4
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.4
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.5.0.8
Mozilla Seamonkey 1.0
Mozilla Thunderbird 1.0.6
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 1.0
Mozilla Thunderbird 0.6
Mozilla Thunderbird 0.3
Mozilla Thunderbird 1.5.0.4
Mozilla Thunderbird 1.5.0.6
Mozilla Firefox 2.0
Mozilla Firefox 0.10
6.8
CVSSv2
CVE-2007-0009
Stack-based buffer overflow in the SSLv2 support in Mozilla Network Security Services (NSS) prior to 3.11.5, as used by Firefox prior to 1.5.0.10 and 2.x prior to 2.0.0.2, Thunderbird prior to 1.5.0.10, SeaMonkey prior to 1.0.8, and certain Sun Java System server products prior t...
Mozilla Firefox
Mozilla Network Security Services
Mozilla Seamonkey
Mozilla Thunderbird
Debian Debian Linux 4.0
Debian Debian Linux 3.1
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 6.06
6.8
CVSSv2
CVE-2007-0780
browser.js in Mozilla Firefox 1.5.x prior to 1.5.0.10 and 2.x prior to 2.0.0.2, and SeaMonkey prior to 1.0.8 uses the requesting URI to identify child windows, which allows remote malicious users to conduct cross-site scripting (XSS) attacks by opening a blocked popup originating...
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 6.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »