English
Français
Light
Dark
System

CVEFind - Alertes CVE

Restez informé en continue
Créer un compte Ouvrez un compte Simple et Gratuit Se connecter Gérez vos alertes

CVE-2006-5462 : Détail

CVE-2006-5462

41.91%V3
Network
2006-11-08 20:00 +00:00
2017-10-09 22:57 +00:00
CVE.org
NVD

Alerte pour un CVE

Restez informé de toutes modifications pour un CVE spécifique.
Gestion des alertes

Descriptions

Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatures for SSL/TLS and email certificates. NOTE: this identifier is for unpatched product versions that were originally intended to be addressed by CVE-2006-4340.

Informations

Metrics

Metric Score Sévérité CVSS Vecteur Source
V2 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N [email protected]

EPSS

EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.

EPSS Score

Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.

EPSS Percentile

Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.
EPSS First.org

Products Mentioned

Configuraton 0

Mozilla>>Firefox >> Version 1.5

Mozilla>>Firefox >> Version 1.5

Mozilla>>Firefox >> Version 1.5

Mozilla>>Firefox >> Version 1.5.0.1

Mozilla>>Firefox >> Version 1.5.0.2

Mozilla>>Firefox >> Version 1.5.0.3

Mozilla>>Firefox >> Version 1.5.0.4

Mozilla>>Firefox >> Version 1.5.0.5

Mozilla>>Firefox >> Version 1.5.0.6

Mozilla>>Firefox >> Version 1.5.0.7

Mozilla>>Network_security_services >> Version 3.11.3

Mozilla>>Seamonkey >> Version 1.0

Mozilla>>Seamonkey >> Version 1.0

    Mozilla>>Seamonkey >> Version 1.0

      Mozilla>>Seamonkey >> Version 1.0

      Mozilla>>Seamonkey >> Version 1.0.1

      Mozilla>>Seamonkey >> Version 1.0.2

      Mozilla>>Seamonkey >> Version 1.0.3

      Mozilla>>Seamonkey >> Version 1.0.4

      Mozilla>>Seamonkey >> Version 1.0.5

      Mozilla>>Thunderbird >> Version 1.5

      Mozilla>>Thunderbird >> Version 1.5

      Mozilla>>Thunderbird >> Version 1.5.0.1

        Mozilla>>Thunderbird >> Version 1.5.0.2

        Mozilla>>Thunderbird >> Version 1.5.0.3

          Mozilla>>Thunderbird >> Version 1.5.0.4

          Mozilla>>Thunderbird >> Version 1.5.0.6

            Mozilla>>Thunderbird >> Version 1.5.0.7

            References

            http://www.vupen.com/english/advisories/2006/3748
            Tags : vdb-entry, x_refsource_VUPEN
            http://secunia.com/advisories/23883
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/23235
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://security.gentoo.org/glsa/glsa-200612-08.xml
            Tags : vendor-advisory, x_refsource_GENTOO
            http://secunia.com/advisories/23013
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22770
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://www.vupen.com/english/advisories/2006/4387
            Tags : vdb-entry, x_refsource_VUPEN
            http://www.debian.org/security/2006/dsa-1225
            Tags : vendor-advisory, x_refsource_DEBIAN
            http://securitytracker.com/id?1017180
            Tags : vdb-entry, x_refsource_SECTRACK
            http://secunia.com/advisories/23009
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://www.us-cert.gov/cas/techalerts/TA06-312A.html
            Tags : third-party-advisory, x_refsource_CERT
            http://www.debian.org/security/2006/dsa-1227
            Tags : vendor-advisory, x_refsource_DEBIAN
            http://secunia.com/advisories/22980
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://www.vupen.com/english/advisories/2007/0293
            Tags : vdb-entry, x_refsource_VUPEN
            http://rhn.redhat.com/errata/RHSA-2006-0733.html
            Tags : vendor-advisory, x_refsource_REDHAT
            http://secunia.com/advisories/24711
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/23263
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22763
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22965
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://www.ubuntu.com/usn/usn-382-1
            Tags : vendor-advisory, x_refsource_UBUNTU
            http://www.vupen.com/english/advisories/2008/0083
            Tags : vdb-entry, x_refsource_VUPEN
            http://rhn.redhat.com/errata/RHSA-2006-0735.html
            Tags : vendor-advisory, x_refsource_REDHAT
            http://securitytracker.com/id?1017181
            Tags : vdb-entry, x_refsource_SECTRACK
            http://security.gentoo.org/glsa/glsa-200612-07.xml
            Tags : vendor-advisory, x_refsource_GENTOO
            http://www.vupen.com/english/advisories/2007/1198
            Tags : vdb-entry, x_refsource_VUPEN
            http://secunia.com/advisories/23297
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22727
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22815
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://rhn.redhat.com/errata/RHSA-2006-0734.html
            Tags : vendor-advisory, x_refsource_REDHAT
            http://www.kb.cert.org/vuls/id/335392
            Tags : third-party-advisory, x_refsource_CERT-VN
            http://secunia.com/advisories/22737
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22929
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/23202
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://security.gentoo.org/glsa/glsa-200612-06.xml
            Tags : vendor-advisory, x_refsource_GENTOO
            http://www.mandriva.com/security/advisories?name=MDKSA-2006:206
            Tags : vendor-advisory, x_refsource_MANDRIVA
            http://secunia.com/advisories/23197
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://www.debian.org/security/2006/dsa-1224
            Tags : vendor-advisory, x_refsource_DEBIAN
            http://secunia.com/advisories/22066
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22817
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/22722
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://sunsolve.sun.com/search/document.do?assetkey=1-26-102781-1
            Tags : vendor-advisory, x_refsource_SUNALERT
            http://securitytracker.com/id?1017182
            Tags : vdb-entry, x_refsource_SECTRACK
            http://www.mandriva.com/security/advisories?name=MDKSA-2006:205
            Tags : vendor-advisory, x_refsource_MANDRIVA
            http://secunia.com/advisories/23287
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://www.ubuntu.com/usn/usn-381-1
            Tags : vendor-advisory, x_refsource_UBUNTU

            Plus d'informations
            Cliquez sur le bouton à gauche (OFF), pour autoriser l'inscription de cookie améliorant les fonctionnalités du site. Cliquez sur le bouton à gauche (Tout accepter), pour ne plus autoriser l'inscription de cookie améliorant les fonctionnalités du site.