Denial of Service Vulnerability in Mozilla Network Security Services
CVE-2013-5605

Currently unrated

Key Information:

Vendor: Mozilla
Status: Network Security Services
Vendor: CVE Published:; 18 November 2013

What is CVE-2013-5605?

The vulnerability in Mozilla Network Security Services (NSS) allows remote attackers to disrupt service through the sending of invalid handshake packets. This flaw can lead to a denial of service situation, impacting the availability of affected services. The issue arises in versions prior to 3.14.5 and 3.15.3, which means users running these outdated versions are at risk. It highlights the necessity for regular updates and security patch management to protect online applications relying on these services.

References

http://www.oracle.com/technetwork/topics/security/ovmbull...

x_refsource_CONFIRM

http://rhn.redhat.com/errata/RHSA-2013-1840.html

vendor-advisoryx_refsource_REDHAT

https://developer.mozilla.org/docs/NSS/NSS_3.15.3_release...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 18, 2013
Vulnerability Reserved
Aug 26, 2013