[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

Arbitrary memory write via PKCS 12 in NSS in Mozilla Firefox, ESR and Thunderbird - CVE-2023-0767

ID: oval:org.secpod.oval:def:87580Date: (C)2023-02-16   (M)2024-03-27
Class: VULNERABILITYFamily: macos




Mozilla Firefox 110.0, Mozilla Firefox ESR 102.8 and Mozilla Thunderbird 102.8 : An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled.

Platform:
Apple Mac OS 14
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X 10.13
Apple Mac OS X 10.14
Apple Mac OS X 10.15
Apple Mac OS 11
Apple Mac OS 12
Apple Mac OS 13
Product:
Mozilla Firefox
Mozilla Firefox ESR
Mozilla Thunderbird
Reference:
CVE-2023-0767
CVE    1
CVE-2023-0767

© SecPod Technologies