火狐浏览器Firefox网络安全服务出现内存破坏漏洞CVE-2017-5461 攻击者可能进行DoS攻击

Mozilla的网络安全服务(NSS)比较容易出现内存破坏漏洞。攻击者可以利用这个漏洞,可以在执行受影响应用程序的用户上下文中执行任意代码。失败的利用尝试可能会导致拒绝服务攻击。

该漏洞影响Firefox的大多数版本,甚至影响到了Redhat Enterprise Linux相关工作站及服务器产品的安全。

Mozilla的网络安全服务(NSS)版本3.28.4修复这个问题。

Bugtraq ID: 98050
Class: Unknown
CVE: CVE-2017-5461
Remote: Yes
Local: No
Published: Apr 05 2017 12:00AM
Updated: Apr 28 2017 12:13AM
Credit: Ronald Crane
Vulnerable: Redhat Enterprise Linux Workstation 7
Redhat Enterprise Linux Workstation 6
Redhat Enterprise Linux Server TUS 7.3
Redhat Enterprise Linux Server TUS 7.2
Redhat Enterprise Linux Server TUS 6.6
Redhat Enterprise Linux Server TUS 6.5
Redhat Enterprise Linux Server EUS 7.2
Redhat Enterprise Linux Server EUS 6.7.z
Redhat Enterprise Linux Server AUS 7.2
Redhat Enterprise Linux Server AUS 6.6
Redhat Enterprise Linux Server AUS 6.5
Redhat Enterprise Linux Server AUS 6.4
Redhat Enterprise Linux Server AUS 6.2
Redhat Enterprise Linux Server 7
Redhat Enterprise Linux Server 6
Redhat Enterprise Linux Long Life 5.9 server
Redhat Enterprise Linux HPC Node EUS 7.2
Redhat Enterprise Linux HPC Node 7
Redhat Enterprise Linux HPC Node 6
Redhat Enterprise Linux ELS 5
Redhat Enterprise Linux Desktop 7
Redhat Enterprise Linux Desktop 6
Mozilla Network Security Services (NSS) 3.21.1 
Mozilla Network Security Services (NSS) 3.20.2 
Mozilla Network Security Services (NSS) 3.20.1 
Mozilla Network Security Services (NSS) 3.19.1 
Mozilla Network Security Services (NSS) 3.17.3 
Mozilla Network Security Services (NSS) 3.17.1 
Mozilla Network Security Services (NSS) 3.15.4 
Mozilla Network Security Services (NSS) 3.15.3 
Mozilla Network Security Services (NSS) 3.15.2 
Mozilla Network Security Services (NSS) 3.15.1 
Mozilla Network Security Services (NSS) 3.14.5 
Mozilla Network Security Services (NSS) 3.14.4 
Mozilla Network Security Services (NSS) 3.12.10 
Mozilla Network Security Services (NSS) 3.12.8 
Mozilla Network Security Services (NSS) 3.12.5 
Mozilla Network Security Services (NSS) 3.12.4 
Mozilla Network Security Services (NSS) 3.12.3 
Mozilla Network Security Services (NSS) 3.12.2 
Mozilla Network Security Services (NSS) 3.12.1 
Mozilla Network Security Services (NSS) 3.11.3 
Mozilla Network Security Services (NSS) 3.9.2 
Mozilla Network Security Services (NSS) 3.9 
+ Mozilla Browser 1.5 
Mozilla Network Security Services (NSS) 3.8 
Mozilla Network Security Services (NSS) 3.7.7 
Mozilla Network Security Services (NSS) 3.7.5 
Mozilla Network Security Services (NSS) 3.7.3 
Mozilla Network Security Services (NSS) 3.7.2 
Mozilla Network Security Services (NSS) 3.7.1 
Mozilla Network Security Services (NSS) 3.7 
Mozilla Network Security Services (NSS) 3.6.1 
Mozilla Network Security Services (NSS) 3.6 
Mozilla Network Security Services (NSS) 3.5 
Mozilla Network Security Services (NSS) 3.4.2 
Mozilla Network Security Services (NSS) 3.4.1 
Mozilla Network Security Services (NSS) 3.4 
Mozilla Network Security Services (NSS) 3.3.2 
Mozilla Network Security Services (NSS) 3.3.1 
Mozilla Network Security Services (NSS) 3.3 
Mozilla Network Security Services (NSS) 3.2.1 
Mozilla Network Security Services (NSS) 3.2 
Mozilla Network Security Services (NSS) 3.21
Mozilla Network Security Services (NSS) 3.20
Mozilla Network Security Services (NSS) 3.19.2.3
Mozilla Network Security Services (NSS) 3.17
Mozilla Network Security Services (NSS) 3.16.5
Mozilla Network Security Services (NSS) 3.16.2.1
Mozilla Network Security Services (NSS) 3.16
Mozilla Network Security Services (NSS) 3.15.5
Mozilla Network Security Services (NSS) 3.15.3.1
Mozilla Network Security Services (NSS) 3.15
Mozilla Network Security Services (NSS) 3.14.3
Mozilla Network Security Services (NSS) 3.14.2
Mozilla Network Security Services (NSS) 3.14.1
Mozilla Network Security Services (NSS) 3.14
Mozilla Network Security Services (NSS) 3.13.4
Mozilla Network Security Services (NSS) 3.13.3
Mozilla Network Security Services (NSS) 3.12.9
Mozilla Network Security Services (NSS) 3.12.7
Mozilla Network Security Services (NSS) 3.12.6
Mozilla Network Security Services (NSS) 3.12.3.2
Mozilla Network Security Services (NSS) 3.12.3.1
Mozilla Network Security Services (NSS) 3.12.11
Mozilla Network Security Services (NSS) 3.12
Mozilla Network Security Services (NSS) 3.11
Mozilla Firefox ESR 45.5.1 
Mozilla Firefox ESR 38.6.1 
Mozilla Firefox ESR 38.5.2 
Mozilla Firefox ESR 38.5.1 
Mozilla Firefox ESR 38.1.1 
Mozilla Firefox ESR 31.5.3 
Mozilla Firefox ESR 24.1 
Mozilla Firefox ESR 24.0.1 
Mozilla Firefox ESR 17.0.10 
Mozilla Firefox ESR 17.0.9 
Mozilla Firefox ESR 17.0.7 
Mozilla Firefox ESR 17.0.6 
Mozilla Firefox ESR 17.0.5 
Mozilla Firefox ESR 17.0.4 
Mozilla Firefox ESR 17.0.3 
Mozilla Firefox ESR 17.0.2 
Mozilla Firefox ESR 17.0.1 
Mozilla Firefox ESR 10.0.12 
Mozilla Firefox ESR 10.0.10 
Mozilla Firefox ESR 10.0.8 
Mozilla Firefox ESR 10.0.7 
Mozilla Firefox ESR 10.0.5 
Mozilla Firefox ESR 10.0.4 
Mozilla Firefox ESR 10.0.3 
Mozilla Firefox ESR 52.0.1
Mozilla Firefox ESR 45.8
Mozilla Firefox ESR 45.7
Mozilla Firefox ESR 45.6
Mozilla Firefox ESR 45.5
Mozilla Firefox ESR 45.4
Mozilla Firefox ESR 45.3
Mozilla Firefox ESR 45.2
Mozilla Firefox ESR 45.1
Mozilla Firefox ESR 38.8
Mozilla Firefox ESR 38.7
Mozilla Firefox ESR 38.6
Mozilla Firefox ESR 38.5
Mozilla Firefox ESR 38.4
Mozilla Firefox ESR 38.3
Mozilla Firefox ESR 38.2.1
Mozilla Firefox ESR 38.2
Mozilla Firefox ESR 38.1
Mozilla Firefox ESR 31.8
Mozilla Firefox ESR 31.7
Mozilla Firefox ESR 31.6
Mozilla Firefox ESR 31.5.2
Mozilla Firefox ESR 31.5
Mozilla Firefox ESR 31.4
Mozilla Firefox ESR 31.3.0
Mozilla Firefox ESR 31.3
Mozilla Firefox ESR 31.2
Mozilla Firefox ESR 31.1.1
Mozilla Firefox ESR 31.1.0
Mozilla Firefox ESR 31.1
Mozilla Firefox ESR 31.0 
Mozilla Firefox ESR 24.8.1
Mozilla Firefox ESR 24.8
Mozilla Firefox ESR 24.7
Mozilla Firefox ESR 24.6
Mozilla Firefox ESR 24.5
Mozilla Firefox ESR 24.4
Mozilla Firefox ESR 24.3
Mozilla Firefox ESR 24.2
Mozilla Firefox ESR 24.1.1
Mozilla Firefox ESR 24.1
Mozilla Firefox ESR 24.0.2
Mozilla Firefox ESR 24.0
Mozilla Firefox ESR 17.0.8
Mozilla Firefox ESR 17.0.11
Mozilla Firefox ESR 17.0
Mozilla Firefox ESR 10.0.9
Mozilla Firefox ESR 10.0.6
Mozilla Firefox ESR 10.0.2
Mozilla Firefox ESR 10.0.11
Mozilla Firefox ESR 10.0.1
Mozilla Firefox 50.0.2 
Mozilla Firefox 50.0.1 
Mozilla Firefox 43.0.2 
Mozilla Firefox 43.0.1 
Mozilla Firefox 41.0.2 
Mozilla Firefox 39.0.3 
Mozilla Firefox 37.0.2 
Mozilla Firefox 37.0.1 
Mozilla Firefox 36.0.4 
Mozilla Firefox 31.8 
Mozilla Firefox 29.0.1 
Mozilla Firefox 28.0.1 
Mozilla Firefox 27.0.1 
Mozilla Firefox 25.0.1 

火狐浏览器漏洞的相关文章请参看

朝鲜红星操作系统发现漏洞 该漏洞利用来自火狐浏览器 可用于安装恶意软件

火狐浏览器Firefox跨域设置cookie漏洞 绿盟科技发布安全威胁通告

发表评论