Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 SSL:VULN:MOZILLA-NSS-REG

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 SSL

Keywords

 Mozilla Network Security Services Regexp Heap Overflow

Release Date

 2010/09/29

Update Number

 1782

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SSL: Mozilla Network Security Services Regexp Heap Overflow


This signature detects attempts to exploit a known vulnerability in Mozilla Network Security Services. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the client.

Extended Description

Mozilla Firefox and Seamonkey are prone to a heap-based buffer-overflow vulnerability in the regular expression parser used to match common names in SSL certificates. Successfully exploiting this issue can allow attackers to execute arbitrary code in the context of the application. Failed attempts will likely cause denial-of-service conditions. Note that attackers need to exploit this issue with a crafted certificate that SeaMonkey trusts; otherwise, a warning message will be presented to the user. SeaMonkey 1.09 and Firefox 3.0.x are vulnerable; other versions may also be affected. This issue is related to the vulnerability described by BID 35888 (Mozilla Firefox NULL Character CA SSL Certificate Validation Security Bypass Vulnerability).

Affected Products

  • Avaya CMS Server 15.0
  • Avaya CMS Server 16.0
  • Avaya Interactive Response 3.0
  • Avaya Interactive Response 4.0
  • Debian Linux 4.0
  • Debian Linux 4.0 Alpha
  • Debian Linux 4.0 Amd64
  • Debian Linux 4.0 Arm
  • Debian Linux 4.0 Armel
  • Debian Linux 4.0 Hppa
  • Debian Linux 4.0 Ia-32
  • Debian Linux 4.0 Ia-64
  • Debian Linux 4.0 M68k
  • Debian Linux 4.0 Mips
  • Debian Linux 4.0 Mipsel
  • Debian Linux 4.0 Powerpc
  • Debian Linux 4.0 S/390
  • Debian Linux 4.0 Sparc
  • Debian Linux 5.0
  • Debian Linux 5.0 Alpha
  • Debian Linux 5.0 Amd64
  • Debian Linux 5.0 Arm
  • Debian Linux 5.0 Armel
  • Debian Linux 5.0 Hppa
  • Debian Linux 5.0 Ia-32
  • Debian Linux 5.0 Ia-64
  • Debian Linux 5.0 M68k
  • Debian Linux 5.0 Mips
  • Debian Linux 5.0 Mipsel
  • Debian Linux 5.0 Powerpc
  • Debian Linux 5.0 S/390
  • Debian Linux 5.0 Sparc
  • Mandriva Corporate Server 3.0.0
  • Mandriva Corporate Server 3.0.0 X86 64
  • Mandriva Enterprise Server 5
  • Mandriva Enterprise Server 5 X86 64
  • Mandriva Linux Mandrake 2008.0
  • Mandriva Linux Mandrake 2008.0 X86 64
  • Mandriva Linux Mandrake 2009.0
  • Mandriva Linux Mandrake 2009.0 X86 64
  • Mandriva Linux Mandrake 2009.1
  • Mandriva Linux Mandrake 2009.1 X86 64
  • Mozilla Firefox 3.0
  • Mozilla Firefox 3.0.1
  • Mozilla Firefox 3.0.10
  • Mozilla Firefox 3.0.11
  • Mozilla Firefox 3.0.12
  • Mozilla Firefox 3.0.2
  • Mozilla Firefox 3.0.3
  • Mozilla Firefox 3.0.4
  • Mozilla Firefox 3.0.5
  • Mozilla Firefox 3.0.6
  • Mozilla Firefox 3.0.7
  • Mozilla Firefox 3.0.7 Beta
  • Mozilla Firefox 3.0.8
  • Mozilla Firefox 3.0.9
  • Mozilla Firefox 3.0 Beta 5
  • Mozilla Network Security Services (NSS) 3.11
  • Mozilla Network Security Services (NSS) 3.11.3
  • Mozilla Network Security Services (NSS) 3.12
  • Mozilla Network Security Services (NSS) 3.12.2
  • Mozilla Network Security Services (NSS) 3.2.0
  • Mozilla Network Security Services (NSS) 3.2.1
  • Mozilla Network Security Services (NSS) 3.3.0
  • Mozilla Network Security Services (NSS) 3.3.1
  • Mozilla Network Security Services (NSS) 3.3.2
  • Mozilla Network Security Services (NSS) 3.4.0
  • Mozilla Network Security Services (NSS) 3.4.1
  • Mozilla Network Security Services (NSS) 3.4.2
  • Mozilla Network Security Services (NSS) 3.5.0
  • Mozilla Network Security Services (NSS) 3.6.0
  • Mozilla Network Security Services (NSS) 3.6.1
  • Mozilla Network Security Services (NSS) 3.7.0
  • Mozilla Network Security Services (NSS) 3.7.1
  • Mozilla Network Security Services (NSS) 3.7.2
  • Mozilla Network Security Services (NSS) 3.7.3
  • Mozilla Network Security Services (NSS) 3.7.5
  • Mozilla Network Security Services (NSS) 3.7.7
  • Mozilla Network Security Services (NSS) 3.8.0
  • Mozilla Network Security Services (NSS) 3.9.0
  • Mozilla Network Security Services (NSS) 3.9.2
  • Mozilla SeaMonkey 1.0
  • Mozilla SeaMonkey 1.0.1
  • Mozilla SeaMonkey 1.0.2
  • Mozilla SeaMonkey 1.0.3
  • Mozilla SeaMonkey 1.0.5
  • Mozilla SeaMonkey 1.0.6
  • Mozilla SeaMonkey 1.0.7
  • Mozilla SeaMonkey 1.0.8
  • Mozilla SeaMonkey 1.0 Dev
  • Pardus Linux 2008
  • Red Hat Desktop 3.0.0
  • Red Hat Enterprise Linux 5.2.Z Server
  • Red Hat Enterprise Linux 5 Server
  • Red Hat Enterprise Linux Desktop Version 4
  • Red Hat Enterprise Linux AS 3
  • Red Hat Enterprise Linux AS 4
  • Red Hat Enterprise Linux AS 4.7.Z
  • Red Hat Enterprise Linux Desktop 5 Client
  • Red Hat Enterprise Linux Desktop Workstation 5 Client
  • Red Hat Enterprise Linux ES 3
  • Red Hat Enterprise Linux ES 4
  • Red Hat Enterprise Linux ES 4.7.Z
  • Red Hat Enterprise Linux WS 3
  • Red Hat Enterprise Linux WS 4
  • Slackware Linux 11.0
  • Slackware Linux 12.0
  • Slackware Linux 12.1
  • Slackware Linux 12.2
  • Slackware Linux 13.0
  • Slackware Linux 13.0 X86 64
  • Slackware Linux -Current
  • Sun Java Enterprise System 2005Q4
  • Sun Java Enterprise System 5
  • Sun Java System Access Manager Policy Agent 2.2
  • Sun Java System Directory Server 5.2
  • Sun Java System Directory Server 5.2 2003Q4
  • Sun Java System Directory Server 5.2 2004Q2
  • Sun Java System Directory Server 5.2 2005Q1
  • Sun Java System Directory Server 5.2 2005Q4
  • Sun Java System Directory Server 5.2 Patch2
  • Sun Java System Directory Server 5.2 Patch3
  • Sun Java System Directory Server 5.2 Patch4
  • Sun Java System Directory Server 5.2 Patch6
  • Sun Java System Directory Server Enterprise Edition 6.0
  • Sun Java System Directory Server Enterprise Edition 6.1
  • Sun Java System Directory Server Enterprise Edition 6.2
  • Sun Java System Directory Server Enterprise Edition 6.3
  • Sun Java System Directory Server Enterprise Edition 6.3.1
  • Sun ONE Directory Server 5.2.0
  • Sun OpenSolaris Build Snv 100
  • Sun OpenSolaris Build Snv 101
  • Sun OpenSolaris Build Snv 101A
  • Sun OpenSolaris Build Snv 102
  • Sun OpenSolaris Build Snv 103
  • Sun OpenSolaris Build Snv 104
  • Sun OpenSolaris Build Snv 105
  • Sun OpenSolaris Build Snv 106
  • Sun OpenSolaris Build Snv 107
  • Sun OpenSolaris Build Snv 108
  • Sun OpenSolaris Build Snv 109
  • Sun OpenSolaris Build Snv 110
  • Sun OpenSolaris Build Snv 111
  • Sun OpenSolaris Build Snv 111A
  • Sun OpenSolaris Build Snv 112
  • Sun OpenSolaris Build Snv 113
  • Sun OpenSolaris Build Snv 114
  • Sun OpenSolaris Build Snv 115
  • Sun OpenSolaris Build Snv 116
  • Sun OpenSolaris Build Snv 117
  • Sun OpenSolaris Build Snv 118
  • Sun OpenSolaris Build Snv 119
  • Sun OpenSolaris Build Snv 120
  • Sun OpenSolaris Build Snv 121
  • Sun OpenSolaris Build Snv 122
  • Sun OpenSolaris Build Snv 123
  • Sun OpenSolaris Build Snv 124
  • Sun OpenSolaris Build Snv 48
  • Sun OpenSolaris Build Snv 49
  • Sun OpenSolaris Build Snv 50
  • Sun OpenSolaris Build Snv 51
  • Sun OpenSolaris Build Snv 54
  • Sun OpenSolaris Build Snv 57
  • Sun OpenSolaris Build Snv 58
  • Sun OpenSolaris Build Snv 59
  • Sun OpenSolaris Build Snv 61
  • Sun OpenSolaris Build Snv 64
  • Sun OpenSolaris Build Snv 67
  • Sun OpenSolaris Build Snv 68
  • Sun OpenSolaris Build Snv 76
  • Sun OpenSolaris Build Snv 77
  • Sun OpenSolaris Build Snv 78
  • Sun OpenSolaris Build Snv 80
  • Sun OpenSolaris Build Snv 81
  • Sun OpenSolaris Build Snv 82
  • Sun OpenSolaris Build Snv 83
  • Sun OpenSolaris Build Snv 84
  • Sun OpenSolaris Build Snv 85
  • Sun OpenSolaris Build Snv 86
  • Sun OpenSolaris Build Snv 87
  • Sun OpenSolaris Build Snv 88
  • Sun OpenSolaris Build Snv 89
  • Sun OpenSolaris Build Snv 90
  • Sun OpenSolaris Build Snv 91
  • Sun OpenSolaris Build Snv 92
  • Sun OpenSolaris Build Snv 93
  • Sun OpenSolaris Build Snv 94
  • Sun OpenSolaris Build Snv 95
  • Sun OpenSolaris Build Snv 96
  • Sun OpenSolaris Build Snv 98
  • Sun OpenSolaris Build Snv 99
  • Sun Solaris 10 Sparc
  • Sun Solaris 10 X86
  • Sun Solaris 9 Sparc
  • Sun Solaris 9 X86
  • SuSE openSUSE 10.3
  • SuSE openSUSE 11.0
  • SuSE openSUSE 11.1
  • SuSE SUSE Linux Enterprise 10 SP2 DEBUGINFO
  • SuSE SUSE Linux Enterprise 10 SP3 DEBUGINFO
  • SuSE SUSE Linux Enterprise 11
  • SuSE SUSE Linux Enterprise Desktop 10 SP2
  • SuSE SUSE Linux Enterprise Desktop 10 SP3
  • SuSE SUSE Linux Enterprise Desktop 11
  • SuSE SUSE Linux Enterprise SDK 10 SP2
  • SuSE SUSE Linux Enterprise SDK 10 SP3
  • SuSE SUSE Linux Enterprise Server 10 SP2
  • SuSE SUSE Linux Enterprise Server 10 SP3
  • SuSE SUSE Linux Enterprise Server 11
  • SuSE SUSE Linux Enterprise Server 11 DEBUGINFO
  • Ubuntu Ubuntu Linux 8.04 LTS Amd64
  • Ubuntu Ubuntu Linux 8.04 LTS I386
  • Ubuntu Ubuntu Linux 8.04 LTS Lpia
  • Ubuntu Ubuntu Linux 8.04 LTS Powerpc
  • Ubuntu Ubuntu Linux 8.04 LTS Sparc
  • Ubuntu Ubuntu Linux 8.10 Amd64
  • Ubuntu Ubuntu Linux 8.10 I386
  • Ubuntu Ubuntu Linux 8.10 Lpia
  • Ubuntu Ubuntu Linux 8.10 Powerpc
  • Ubuntu Ubuntu Linux 8.10 Sparc
  • Ubuntu Ubuntu Linux 9.04 Amd64
  • Ubuntu Ubuntu Linux 9.04 I386
  • Ubuntu Ubuntu Linux 9.04 Lpia
  • Ubuntu Ubuntu Linux 9.04 Powerpc
  • Ubuntu Ubuntu Linux 9.04 Sparc
  • VMWare ESX Server 4.0
  • VMWare vMA 4.0

References

  • BugTraq: 35891
  • CVE: CVE-2009-2404

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out