Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.
References
Configurations
Configuration 1 (hide)
|
History
12 Feb 2023, 23:30
Type | Values Removed | Values Added |
---|---|---|
Summary | Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker. | |
References |
|
02 Feb 2023, 15:17
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use this flaw to crash a server application compiled against the NSS library. |
Information
Published : 2017-05-30 18:29
Updated : 2023-12-10 12:15
NVD link : CVE-2017-7502
Mitre link : CVE-2017-7502
CVE.ORG link : CVE-2017-7502
JSON object : View
Products Affected
mozilla
- network_security_services
CWE
CWE-476
NULL Pointer Dereference