Network Security Services (NSS) is vulnerable to denial of service (DoS). The vulnerability is possible because of the flaw in the way NSS handles cryptographic data from the network, leading to an application crash or execution of arbitrary code with the permission of the user running the application.