Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Fedora Local Security Checks >> Fedora Core 5 2006-979: nss

Vulnerability Assessment Details

Fedora Core 5 2006-979: nss
Vulnerability Assessment Summary
Check for the version of the nss package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory FEDORA-2006-979 (nss).

Network Security Services (NSS) is a set of libraries designed to
support cross-platform development of security-enabled client and
server applications. Applications built with NSS can support SSL v2
and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509
v3 certificates, and other security standards.

Update Information:

Network Security Services (NSS) is a set of libraries
designed to support cross-platform development of
security-enabled client and server applications.
Applications built with NSS can support SSL v2 and v3, TLS,
PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3
certificates, and other security standards.

Daniel Bleichenbacher recently described an implementation
error in RSA signature verification. For RSA keys with
exponent 3 it is possible for a possible hacker to forge a
signature that which would be incorrectly verified by the
NSS library. (CVE-2006-4340)

All users of NSS, which includes users of Firefox,
Thunderbird, Seamonkey, and other mozilla.org products, are
recommended to update to this package, which contains NSS
version 3.11.3 which is not vulnerable to this issue.


Solution : Get the newest Fedora Updates
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2007 Tenable Network Security
Cables, Connectors


Lenovo IdeaPad 5i Slim 5 16IRL8 16

Lenovo IdeaPad 5i Slim 5 16IRL8 16" (512GB SSD, Intel Core i5-1335U, 1.30GHz,...

$422.10


Lenovo IdeaPad Flex 5 14

Lenovo IdeaPad Flex 5 14" 14IAU7 (256GB SSD, 13-1215U, 8GB RAM) _ (82R7003WUS)

$289.00


Lenovo 100e Chromebook Laptop 2nd Gen | 11.6

Lenovo 100e Chromebook Laptop 2nd Gen | 11.6" HD | MTK 1.7GHz | 4GB RAM | 32GB

$39.99


Lenovo - LOQ 15.6

Lenovo - LOQ 15.6" Gaming Laptop FHD - Intel Core i5-13420H with 8GB Memory -...

$629.99


Lenovo Ideapad 1i 15.6

Lenovo Ideapad 1i 15.6" FHD Notebook Intel Core i5-1235U 8GB RAM 256GB SSD

$349.99


Lenovo ThinkPad X1 Nano 13

Lenovo ThinkPad X1 Nano 13" Touchscreen 2K i7-1180G7 16GB/256GB Win 10 Pro

$535.00


Lenovo 11.6

Lenovo 11.6" Laptop PC Computer Intel 4GB RAM 64GB SSD HDMI WIFI Windows 10

$91.22


Lenovo IP 5 16IAU7 16

Lenovo IP 5 16IAU7 16" 2.5K Chromebook i3-1215U 8GB Ram 128GB eMMC Chrome OS

$219.99


Lenovo ThinkPad 14

Lenovo ThinkPad 14" Laptop Computer Core i7 16GB RAM 256GB SSD Windows 10 Pro

$229.99


Lenovo ThinkPad Yoga 11e 11.6

Lenovo ThinkPad Yoga 11e 11.6" 2in1 Touch Intel Core i3 4GB RAM 128GB SSD Win10

$59.00


Discussions

No Discussions have been posted on this vulnerability.