Integer Overflow Vulnerability in Mozilla NSS Affects Multiple Vendors
CVE-2013-1741

Currently unrated

Key Information:

Vendor: Mozilla
Status: Network Security Services
Vendor: CVE Published:; 18 November 2013

What is CVE-2013-1741?

The integer overflow vulnerability in Mozilla's Network Security Services (NSS) allows remote attackers to exploit the affected versions by providing an excessively large size value, which may lead to a denial of service or other unforeseen impacts. This flaw highlights the critical importance of validating input to prevent such security breaches.

References

http://www.oracle.com/technetwork/topics/security/ovmbull...

x_refsource_CONFIRM

http://support.apple.com/kb/HT204941

x_refsource_CONFIRM

https://developer.mozilla.org/docs/NSS/NSS_3.15.3_release...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 18, 2013
Vulnerability Reserved
Feb 13, 2013