Vulnerable Systems:
* Mozilla Network Security Services (NSS) 3.12.5
* Mozilla Network Security Services (NSS) 3.12.3
* Mozilla Network Security Services (NSS) 3.12.2
* Mozilla Network Security Services (NSS) 3.11.3
* Mozilla Network Security Services (NSS) 3.9.2
* Mozilla Network Security Services (NSS) 3.9
* Mozilla Network Security Services (NSS) 3.8
* Mozilla Network Security Services (NSS) 3.7.7
* Mozilla Network Security Services (NSS) 3.7.5
* Mozilla Network Security Services (NSS) 3.7.3
* Mozilla Network Security Services (NSS) 3.7.2
* Mozilla Network Security Services (NSS) 3.7.1
* Mozilla Network Security Services (NSS) 3.7
* Mozilla Network Security Services (NSS) 3.6.1
* Mozilla Network Security Services (NSS) 3.6
* Mozilla Network Security Services (NSS) 3.5
* Mozilla Network Security Services (NSS) 3.4.2
* Mozilla Network Security Services (NSS) 3.4.1
* Mozilla Network Security Services (NSS) 3.4
* Mozilla Network Security Services (NSS) 3.3.2
* Mozilla Network Security Services (NSS) 3.3.1
* Mozilla Network Security Services (NSS) 3.3
* Mozilla Network Security Services (NSS) 3.2.1
* Mozilla Network Security Services (NSS) 3.2
* Mozilla Network Security Services (NSS) 3.12.6
* Mozilla Network Security Services (NSS) 3.12
* Mozilla Network Security Services (NSS) 3.11
An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted security module.
Vendor Status:
Mozilla as issued an update for this vulnerablity
