Mozilla SeaMonkey CVE-2015-2730 Weak Encryption Vulnerability

description-logoDescription

Mozilla community member Watson Ladd reported that the implementation of Elliptical Curve Cryptography (ECC) multiplication for Elliptic Curve Digital Signature Algorithm (ECDSA) signature validation in Network Security Services (NSS) did not handle exceptional cases correctly. This could potentially allow for signature forgery. This issue was fixed in NSS version 3.19.1.

affected-products-logoAffected Applications

SeaMonkey

CVE References

CVE-2015-2730