[security-alerts] FW: [SA24253] Network Security Services SSLv2 Processing Buffer Overflows

["Kazennov, Vladimir" <Vladimir.Kazennov@xxxxxxxxxx>]

> 
> ----------------------------------------------------------------------
> 
> TITLE:
> Network Security Services SSLv2 Processing Buffer Overflows
> 
> SECUNIA ADVISORY ID:
> SA24253
> 
> VERIFY ADVISORY:
> http://secunia.com/advisories/24253/
> 
> CRITICAL:
> Highly critical
> 
> IMPACT:
> System access
> 
> WHERE:
> From remote
> 
> SOFTWARE:
> Network Security Services (NSS) 3.x
> http://secunia.com/product/3173/
> 
> DESCRIPTION:
> Two vulnerabilities have been reported in Network Security Services
> (NSS), which potentially can be exploited by malicious people to
> compromise a vulnerable system.
> 
> 1) An integer underflow error when processing SSLv2 server messages
> can be exploited to cause a heap-based buffer overflow via a
> certificate with a public key too small to encrypt the "Master
> Secret".
> 
> 2) An integer underflow error when processing SSLv2 client master
> keys can be exploited to cause a stack-based buffer overflow via
> specially crafted parameters during an SSLv2 handshake.
> 
> Successful exploitation of the vulnerabilities may allow execution of
> arbitrary code.
> 
> The vulnerabilities are reported in versions 3.10 and 3.11.3. Other
> versions may also be affected.
> 
> SOLUTION:
> The vulnerabilities will be fixed in version 3.11.5.
> 
> PROVIDED AND/OR DISCOVERED BY:
> Discovered by regenrecht and reported via iDefense Labs.
> 
> ORIGINAL ADVISORY:
> Mozilla Foundation:
> http://www.mozilla.org/security/announce/2007/mfsa2007-06.html
> 
> iDefense Labs:
> http://labs.idefense.com/intelligence/vulnerabilities/display.
> php?id=482
> http://labs.idefense.com/intelligence/vulnerabilities/display.
> php?id=483
>