Mozilla Network Security Services : OVAL Definitions - Class: Vulnerability

Filter: Compliance Inventory Patch Vulnerability All Family: All Windows Unix IOS Pixos
Title Definition Id Class Family
CERT_VerifyCert can SECSuccess for bad certificates oval:org.mitre.oval:def:19393 Vulnerability windows
CVE-2006-4340 oval:org.opensuse.security:def:20064340 Vulnerability unix
CVE-2006-5462 oval:org.opensuse.security:def:20065462 Vulnerability unix
CVE-2007-0008 oval:org.opensuse.security:def:20070008 Vulnerability unix
CVE-2007-0009 oval:org.opensuse.security:def:20070009 Vulnerability unix
CVE-2009-2404 oval:org.opensuse.security:def:20092404 Vulnerability unix
Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) before 3.12.3, as u... oval:org.mitre.oval:def:11174 Vulnerability unix
Incorrect IDNA domain name matching for wildcard certificates oval:org.mitre.oval:def:24541 Vulnerability windows
Integer truncation in certificate parsing oval:org.mitre.oval:def:19530 Vulnerability windows
Integer underflow in the SSLv2 support in Mozilla Network Security Services (NSS) before 3.11.5, as used by Firefox befo... oval:org.mitre.oval:def:10502 Vulnerability unix
Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 2... oval:org.mitre.oval:def:23996 Vulnerability windows
Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird bef... oval:org.mitre.oval:def:11007 Vulnerability unix
Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird bef... oval:org.mitre.oval:def:10478 Vulnerability unix
Mozilla Network Security Services (NSS) before 3.15.2 does not ensure that data structures are initialized before read o... oval:org.mitre.oval:def:19254 Vulnerability windows
Null Cipher buffer overflow oval:org.mitre.oval:def:19731 Vulnerability windows
Race condition in libssl in Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.... oval:org.mitre.oval:def:24194 Vulnerability windows
Stack-based buffer overflow in the SSLv2 support in Mozilla Network Security Services (NSS) before 3.11.5, as used by Fi... oval:org.mitre.oval:def:10174 Vulnerability unix
The ASN.1 decoder in the QuickDER decoder in Mozilla Network Security Services (NSS) before 3.13.4, as used in Firefox 4... oval:org.mitre.oval:def:16701 Vulnerability windows
The CERT_DecodeCertPackage function in Mozilla Network Security Services (NSS), as used in Mozilla Firefox before 20.0, ... oval:org.mitre.oval:def:17150 Vulnerability windows
VMware Network Security Services (NSS) heap-based buffer overflow vulnerability oval:org.mitre.oval:def:8658 Vulnerability unix
VMware security updates for vSphere API and ESX Service Console oval:org.mitre.oval:def:20669 Vulnerability unix
Total number of results : 21
Page : 1 (This Page)

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html