The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of NSPR

Mozilla NSS, NSPR: privilege escalation via SUID
An attacker can in some cases use an environment variable with a suid program linked to Mozilla NSS or NSPR, in order to escalate his privileges...
1174015, DLA-676-1, DLA-677-1, DSA-3687-1, DSA-3688-1, openSUSE-SU-2016:0731-1, openSUSE-SU-2016:0733-1, VIGILANCE-VUL-20748
NSPR: buffer overflow via GrowStuff
An attacker can generate a buffer overflow in GrowStuff of NSPR, in order to trigger a denial of service, and possibly to run code...
1174015, CERTFR-2019-AVI-325, CVE-2016-1951, DLA-513-1, DSA-3687-1, JSA10939, USN-3023-1, USN-3028-1, VIGILANCE-VUL-19876
Mozilla NSS/NSPR: three vulnerabilities
An attacker can use several vulnerabilities of Mozilla NSS/NSPR...
cpuoct2017, CVE-2015-7181, CVE-2015-7182, CVE-2015-7183, DLA-480-1, DSA-3393-1, DSA-3406-1, DSA-3688-1, FEDORA-2015-2880ac7065, FEDORA-2015-5b5109510c, MFSA-2015-133, openSUSE-SU-2015:1942-1, RHSA-2015:1980-01, RHSA-2015:1981-01, RHSA-2015:1982-01, RHSA-2015:2068-01, SA119, SOL31372672, SSA:2015-310-02, SUSE-SU-2015:1978-1, SUSE-SU-2015:1981-1, SUSE-SU-2015:2081-1, USN-2790-1, USN-2791-1, VIGILANCE-VUL-18237
NSPR: buffer overflow of sprintf
An attacker can generate a buffer overflow of NSPR via sprintf(), in order to trigger a denial of service, and possibly to execute code...
CERTFR-2019-AVI-325, CVE-2014-1545, DSA-2962-1, FEDORA-2014-7279, FEDORA-2014-7310, JSA10939, MDVSA-2014:125, MDVSA-2015:059, MFSA 2014-55, openSUSE-SU-2014:0797-1, RHSA-2014:0917-01, RHSA-2014:1246-01, SUSE-SU-2014:0824-1, SUSE-SU-2014:0824-2, SUSE-SU-2014:0824-3, SUSE-SU-2014:0905-1, USN-2265-1, VIGILANCE-VUL-14869
Mozilla NSPR, NSS, IE: accepting IP wildcard certificates
Some web browsers accept wildcard X.509 certificates containing an IP address fragment...
CERTA-2002-AVI-272, CVE-2010-3170, DSA-2123-1, FEDORA-2010-15989, openSUSE-SU-2010:0904-1, openSUSE-SU-2010:0906-1, openSUSE-SU-2014:1100-1, RHSA-2010:0862-02, SUSE-SR:2010:020, VIGILANCE-VUL-10079, VMSA-2011-0004.2, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005, wp-10-0001
NSPR: memory corruptions
An attacker can use two vulnerabilities of NSPR, in order to generate a denial of service, or to execute code...
492779, 516396, BID-36851, CERTA-2009-AVI-414, CERTA-2009-AVI-509, CERTA-2009-AVI-520, CERTA-2010-AVI-280, CVE-2009-0689, CVE-2009-1563-REJECT, DSA-1931-1, FEDORA-2010-7100, MDVSA-2009:294, SUSE-SR:2009:018, VIGILANCE-VUL-9144, VMSA-2010-0001, VMSA-2010-0001.1
Our database contains other pages. You can request a free trial to read them.

Display information about NSPR: