G07-30801
CVSS:
6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P)
False Positive:
t
Variants:
1
Year:
2007
Description
This strike exploits a heap-based buffer overflow vulnerability in Mozilla Network Security Services (NSS). The vulnerability is due to a design error in the processing of malformed SSLv2 server messages. Successful exploitation of this vulnerability allows remote attackers to execute arbitrary code on the vulnerable system in the context of the affected application.