Update Protection against Mozilla Network Security Services Regexp Heap Overflow Vulnerability
| Check Point Reference: | CPAI-2009-165 | |
| Date Published: | ||
| Severity: | ||
| Source: | Mozilla Foundation Security Advisory 2009-43 | |
| Industry Reference(s): | CVE-2009-2404 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Mozilla Foundation Network Security Services Prior to 3.12.3 | ||
| Vulnerability Description A remote code execution vulnerability has been reported within Mozilla Network Security Services. Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. it is used by applications such as Mozilla Firefox and Mozilla Thunderbird. A remote attacker could exploit this flaw to execute arbitrary code on a vulnerable system. |
||
|
Update/Patch Available Apply patch: Red Hat Bugzilla – Bug 512912 |
|
|
Vulnerability Details The vulnerability is due to a heap buffer overflow in NSS when handling malformed certificates with a crafted Common Name (CN) field. A remote attacker can exploit this flaw by sending a malicious certificate to a vulnerable system. Successful exploitation of this issue could result in execution of arbitrary code on the vulnerable system. |
Protection Overview
This protection will detect and block malicious certificates that contain a crafted Common Name.
In order for the protection to be activated, update your Security Gateway/VPN-1 product to the latest IPS/SmartDefense update. For information on how to update IPS/SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.