CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
Percentile
99.7%
iDefense has informed Mozilla about two potential buffer overflow vulnerabilities found by researcher regenrecht in the Network Security Services (NSS) code for processing the SSLv2 protocol.
labs.idefense.com/
labs.idefense.com/intelligence/vulnerabilities/display.php?id=482
labs.idefense.com/intelligence/vulnerabilities/display.php?id=483
nvd.nist.gov/nvd.cfm?cvename=CVE-2007-0008
nvd.nist.gov/nvd.cfm?cvename=CVE-2007-0009
bugzilla.mozilla.org/show_bug.cgi?id=364319
bugzilla.mozilla.org/show_bug.cgi?id=364323