Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

CVE-2017-5461

Related Vulnerabilities: CVE-2017-5461  

An out-of-bounds write flaw was found in the way NSS performed certain Base64-decoding operations. An attacker could use this flaw to create a specially crafted certificate which, when parsed by NSS, could cause it to crash or execute arbitrary code, using the permissions of the user running an application compiled against the NSS library.

Source
An out-of-bounds write flaw was found in the way NSS performed certain Base64-decoding operations. An attacker could use this flaw to create a specially crafted certificate which, when parsed by NSS, could cause it to crash or execute arbitrary code, using the permissions of the user running an application compiled against the NSS library.

Find out more about CVE-2017-5461 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

The security flaw exists in NSS library Base64 encoder/decoder code. Any application which uses NSS library to parse base64 encoded data could possibly be affected by the flaw. For example:

  1. Servers compiled against NSS which parse untrusted certificates or any other base64 encoded data from its users.

  2. Utilities like curl etc which use NSS to parse user provided base64 encoded certificates.

  3. Applications like Firefox which use NSS to parse client-certificates before passing them to the web server.

CVSS v3 metrics

CVSS3 Base Score 9.8
CVSS3 Base Metrics CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity Impact High
Availability Impact High

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 6 (nss) RHSA-2017:1100 2017-04-20
Red Hat Enterprise Linux Extended Update Support 6.7 (nss-util) RHSA-2017:1102 2017-04-20
Red Hat Enterprise Linux 7 (nss) RHSA-2017:1100 2017-04-20
Red Hat Enterprise Linux Server (v. 5 ELS) (nss) RHSA-2017:1101 2017-04-20
Red Hat Enterprise Linux Server TUS (v. 6.6) (nss-util) RHSA-2017:1102 2017-04-20
Red Hat Enterprise Linux Long Life (v. 5.9 server) (nss) RHSA-2017:1103 2017-04-20
Red Hat Enterprise Linux Extended Update Support 7.2 (nss-util) RHSA-2017:1102 2017-04-20
Red Hat Enterprise Linux Advanced Update Support 6.6 (nss-util) RHSA-2017:1102 2017-04-20
Red Hat Enterprise Linux Server TUS (v. 6.5) (nss-util) RHSA-2017:1102 2017-04-20
Red Hat Enterprise Linux Advanced Update Support 6.4 (nss-util) RHSA-2017:1102 2017-04-20
Red Hat Enterprise Linux Advanced Update Support 6.5 (nss-util) RHSA-2017:1102 2017-04-20
Red Hat Enterprise Linux Advanced Update Support 6.2 (nss-util) RHSA-2017:1102 2017-04-20

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 4 nss Affected

Acknowledgements

Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Ronald Crane as the original reporter.

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started