Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Network Security Services 代码问题漏洞
Vulnerability Description
Mozilla Network Security Services(NSS)是美国Mozilla基金会的一个函数库(网络安全服务库)。该产品可跨平台提供SSL、S/MIME和其他Internet安全标准支持。 Mozilla NSS 3.26之前版本中存在代码问题漏洞。该漏洞源于K11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime缺少空值检查。攻击者可利用该漏洞造成拒绝服务(服务器崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A