virus logo FortiClient Vulnerability

Mozilla SeaMonkey CVE-2014-1568 Weak Encryption Vulnerability

description-logoDescription

Antoine Delignat-Lavaud, security researcher at Inria Paris in team Prosecco, reported an issue in Network Security Services (NSS) libraries affecting all versions. He discovered that NSS is vulnerable to a variant of a signature forgery attack previously published by Daniel Bleichenbacher. This is due to lenient parsing of ASN.1 values involved in a signature and could lead to the forging of RSA certificates.

affected-products-logoAffected Applications

SeaMonkey

CVE References

CVE-2014-1568

Other References

https://www.mozilla.org/en-US/security/advisories/mfsa2014-73
ID 48807
Created Aug 12, 2018
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS MacOS
Vendor Mozilla
Patch auto
Application SeaMonkey