CVE-2004-0826 - 漏洞详情

CVE-2004-0826 (CNNVD-200412-948)

HIGH

中文标题:

Netscape NSS库远程缓冲区溢出漏洞

英文标题:

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attacke...

CVSS分数: 7.5

发布时间: 2004-09-02 04:00:00

漏洞类型: 授权问题

状态: PUBLISHED

数据质量分数: 0.30

数据版本: v3

漏洞描述

中文描述:

Netscape Network Security Services库是用于Netscape Enterprise Server(NES)和Sun One / Sun Java System Web Server的安全服务程序库。 NSS程序库存在一个缓冲区溢出，可导致使用这个库通过安全套接口层通信的应用程序产生安全问题，可能以进程权限在系统上执行任意指令。 NSS库在SSLv2记录解析中存在一个缺陷，可导致远程破坏。在SSLv2协商中解析第一个记录时，客户端的Hello消息，服务程序没有对记录字段的长度进行正确检查。结果可导致远程攻击者触发基于堆的溢出。Netscape Enterprise Server和Sun One默认关闭SSLv2协议，但是多数大型站点开启这个功能，成功利用此漏洞，可能以WEB服务进程权限在系统上执行任意指令。

英文描述:

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.

CWE类型:

（暂无数据）

受影响产品

厂商	产品	版本	版本范围	平台	CPE
mozilla	network_security_services	3.2	-	-	`cpe:2.3:a:mozilla:network_security_services:3.2:::::::*`
mozilla	network_security_services	3.2.1	-	-	`cpe:2.3:a:mozilla:network_security_services:3.2.1:::::::*`
mozilla	network_security_services	3.3	-	-	`cpe:2.3:a:mozilla:network_security_services:3.3:::::::*`
mozilla	network_security_services	3.3.1	-	-	`cpe:2.3:a:mozilla:network_security_services:3.3.1:::::::*`
mozilla	network_security_services	3.3.2	-	-	`cpe:2.3:a:mozilla:network_security_services:3.3.2:::::::*`
mozilla	network_security_services	3.4	-	-	`cpe:2.3:a:mozilla:network_security_services:3.4:::::::*`
mozilla	network_security_services	3.4.1	-	-	`cpe:2.3:a:mozilla:network_security_services:3.4.1:::::::*`
mozilla	network_security_services	3.4.2	-	-	`cpe:2.3:a:mozilla:network_security_services:3.4.2:::::::*`
mozilla	network_security_services	3.5	-	-	`cpe:2.3:a:mozilla:network_security_services:3.5:::::::*`
mozilla	network_security_services	3.6	-	-	`cpe:2.3:a:mozilla:network_security_services:3.6:::::::*`
mozilla	network_security_services	3.6.1	-	-	`cpe:2.3:a:mozilla:network_security_services:3.6.1:::::::*`
mozilla	network_security_services	3.7	-	-	`cpe:2.3:a:mozilla:network_security_services:3.7:::::::*`
mozilla	network_security_services	3.7.1	-	-	`cpe:2.3:a:mozilla:network_security_services:3.7.1:::::::*`
mozilla	network_security_services	3.7.2	-	-	`cpe:2.3:a:mozilla:network_security_services:3.7.2:::::::*`
mozilla	network_security_services	3.7.3	-	-	`cpe:2.3:a:mozilla:network_security_services:3.7.3:::::::*`
mozilla	network_security_services	3.7.5	-	-	`cpe:2.3:a:mozilla:network_security_services:3.7.5:::::::*`
mozilla	network_security_services	3.7.7	-	-	`cpe:2.3:a:mozilla:network_security_services:3.7.7:::::::*`
mozilla	network_security_services	3.8	-	-	`cpe:2.3:a:mozilla:network_security_services:3.8:::::::*`
mozilla	network_security_services	3.9	-	-	`cpe:2.3:a:mozilla:network_security_services:3.9:::::::*`
netscape	certificate_server	1.0	-	-	`cpe:2.3:a:netscape:certificate_server:1.0:patch1::::::`
netscape	certificate_server	4.2	-	-	`cpe:2.3:a:netscape:certificate_server:4.2:::::::*`
netscape	directory_server	1.3	-	-	`cpe:2.3:a:netscape:directory_server:1.3:patch5::::::`
netscape	directory_server	3.1	-	-	`cpe:2.3:a:netscape:directory_server:3.1:patch1::::::`
netscape	directory_server	3.12	-	-	`cpe:2.3:a:netscape:directory_server:3.12:::::::*`
netscape	directory_server	4.1	-	-	`cpe:2.3:a:netscape:directory_server:4.1:::::::*`
netscape	directory_server	4.11	-	-	`cpe:2.3:a:netscape:directory_server:4.11:::::::*`
netscape	directory_server	4.13	-	-	`cpe:2.3:a:netscape:directory_server:4.13:::::::*`
netscape	enterprise_server	2.0	-	-	`cpe:2.3:a:netscape:enterprise_server:2.0:::::::*`
netscape	enterprise_server	2.0.1c	-	-	`cpe:2.3:a:netscape:enterprise_server:2.0.1c:::::::*`
netscape	enterprise_server	2.0a	-	-	`cpe:2.3:a:netscape:enterprise_server:2.0a:::::::*`
netscape	enterprise_server	3.0	-	-	`cpe:2.3:a:netscape:enterprise_server:3.0:::::::*`
netscape	enterprise_server	3.0.1	-	-	`cpe:2.3:a:netscape:enterprise_server:3.0.1:::::::*`
netscape	enterprise_server	3.0.1b	-	-	`cpe:2.3:a:netscape:enterprise_server:3.0.1b:::::::*`
netscape	enterprise_server	3.0.7a	-	-	`cpe:2.3:a:netscape:enterprise_server:3.0.7a::netware:::::`
netscape	enterprise_server	3.0l	-	-	`cpe:2.3:a:netscape:enterprise_server:3.0l:::::::*`
netscape	enterprise_server	3.1	-	-	`cpe:2.3:a:netscape:enterprise_server:3.1:::::::*`
netscape	enterprise_server	3.2	-	-	`cpe:2.3:a:netscape:enterprise_server:3.2:::::::*`
netscape	enterprise_server	3.3	-	-	`cpe:2.3:a:netscape:enterprise_server:3.3:::::::*`
netscape	enterprise_server	3.4	-	-	`cpe:2.3:a:netscape:enterprise_server:3.4:::::::*`
netscape	enterprise_server	3.5	-	-	`cpe:2.3:a:netscape:enterprise_server:3.5:::::::*`
netscape	enterprise_server	3.5.1	-	-	`cpe:2.3:a:netscape:enterprise_server:3.5.1:::::::*`
netscape	enterprise_server	3.6	-	-	`cpe:2.3:a:netscape:enterprise_server:3.6:::::::*`
netscape	enterprise_server	4.0	-	-	`cpe:2.3:a:netscape:enterprise_server:4.0:::::::*`
netscape	enterprise_server	4.1	-	-	`cpe:2.3:a:netscape:enterprise_server:4.1:sp3::::::`
netscape	enterprise_server	4.1.1	-	-	`cpe:2.3:a:netscape:enterprise_server:4.1.1::netware:::::`
netscape	enterprise_server	5.0	-	-	`cpe:2.3:a:netscape:enterprise_server:5.0::netware:::::`
netscape	personalization_engine	*	-	-	`cpe:2.3:a:netscape:personalization_engine::::::::`
sun	java_enterprise_system	2003q4	-	-	`cpe:2.3:a:sun:java_enterprise_system:2003q4:::::::*`
sun	java_enterprise_system	2004q2	-	-	`cpe:2.3:a:sun:java_enterprise_system:2004q2:::::::*`
sun	java_system_application_server	7.0	-	-	`cpe:2.3:a:sun:java_system_application_server:7.0::enterprise:::::`
sun	java_system_application_server	7.1	-	-	`cpe:2.3:a:sun:java_system_application_server:7.1:::::::*`
sun	one_application_server	6.0	-	-	`cpe:2.3:a:sun:one_application_server:6.0:::::::*`
sun	one_web_server	4.1	-	-	`cpe:2.3:a:sun:one_web_server:4.1:::::::*`
sun	one_web_server	6.0	-	-	`cpe:2.3:a:sun:one_web_server:6.0:sp3::::::`
sun	one_web_server	6.1	-	-	`cpe:2.3:a:sun:one_web_server:6.1:::::::*`
hp	hp-ux	11.00	-	-	`cpe:2.3:o:hp:hp-ux:11.00:::::::*`
hp	hp-ux	11.11	-	-	`cpe:2.3:o:hp:hp-ux:11.11:::::::*`
hp	hp-ux	11.23	-	-	`cpe:2.3:o:hp:hp-ux:11.23::ia64_64-bit:::::`

解决方案

中文解决方案:

（暂无数据）

英文解决方案:

（暂无数据）

临时解决方案:

（暂无数据）

参考链接

11015 vdb-entry
cve.org

访问

20040823 Netscape NSS Library Remote Compromise third-party-advisory
cve.org

访问

sslv2-client-hello-overflow(16314) vdb-entry
cve.org

访问

SSRT4779 vendor-advisory
cve.org

访问

CVSS评分详情

7.5

HIGH

CVSS向量: AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS版本: 2.0

机密性

PARTIAL

完整性

PARTIAL

可用性

PARTIAL

时间信息

发布时间:

2004-09-02 04:00:00

修改时间:

2024-08-08 00:31:47

创建时间:

2025-11-11 15:32:21

更新时间:

2025-11-11 15:48:56

利用信息

暂无可利用代码信息

数据源详情

数据源	记录ID	版本	提取时间
CVE	`cve_CVE-2004-0826`	2025-11-11 15:17:29	2025-11-11 07:32:21
NVD	`nvd_CVE-2004-0826`	2025-11-11 14:50:55	2025-11-11 07:41:07
CNNVD	`cnnvd_CNNVD-200412-948`	2025-11-11 15:08:44	2025-11-11 07:48:56

版本与语言

当前版本: v3

主要语言: EN

支持语言:

EN ZH

安全公告

暂无安全公告信息

变更历史

v3 CNNVD

2025-11-11 15:48:56

vulnerability_type: 未提取 → 授权问题; cnnvd_id: 未提取 → CNNVD-200412-948; data_sources: ['cve', 'nvd'] → ['cnnvd', 'cve', 'nvd']

查看详细变更

vulnerability_type: 未提取 -> 授权问题
cnnvd_id: 未提取 -> CNNVD-200412-948
data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']

v2 NVD

2025-11-11 15:41:07

severity: SeverityLevel.MEDIUM → SeverityLevel.HIGH; cvss_score: 未提取 → 7.5; cvss_vector: NOT_EXTRACTED → AV:N/AC:L/Au:N/C:P/I:P/A:P; cvss_version: NOT_EXTRACTED → 2.0; affected_products_count: 0 → 58; data_sources: ['cve'] → ['cve', 'nvd']

查看详细变更

severity: SeverityLevel.MEDIUM -> SeverityLevel.HIGH
cvss_score: 未提取 -> 7.5
cvss_vector: NOT_EXTRACTED -> AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss_version: NOT_EXTRACTED -> 2.0
affected_products_count: 0 -> 58
data_sources: ['cve'] -> ['cve', 'nvd']

CVE-2004-0826 (CNNVD-200412-948)

中文标题:

Netscape NSS库远程缓冲区溢出漏洞

英文标题:

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attacke...

漏洞描述

中文描述:

英文描述:

CWE类型:

标签:

受影响产品

解决方案

中文解决方案:

英文解决方案:

临时解决方案:

参考链接

CVSS评分详情

时间信息

利用信息

数据源详情

版本与语言

安全公告

变更历史