CVE-2004-0826

Published: Dec 31, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.

Affected (93)

Products: Mozilla: Network Security Services · Netscape: Certificate Server, Directory Server, Enterprise Server, Personalization Engine · Sun: Java Enterprise System, Java System Application Server, One Application Server, One Web Server · +1 more

Show all products

Mozilla: Network Security Services · Netscape: Certificate Server, Directory Server, Enterprise Server, Personalization Engine · Sun: Java Enterprise System, Java System Application Server, One Application Server, One Web Server · Hp: Hp Ux

Mozilla

1 product

Network Security Services

4 products

Personalization Engine

Sun

4 products

Java Enterprise System

Java System Application Server

One Application Server

One Web Server

1 product

Hp Ux

Configuration A

90 vulnerable

Vulnerable Software	Affected Versions
Mozilla Network Security Services	Version 3.2.1
Mozilla Network Security Services	Version 3.2
Mozilla Network Security Services	Version 3.3.1
Mozilla Network Security Services	Version 3.3.2
Mozilla Network Security Services	Version 3.3
Mozilla Network Security Services	Version 3.4.1
Mozilla Network Security Services	Version 3.4.2
Mozilla Network Security Services	Version 3.4
Mozilla Network Security Services	Version 3.5
Mozilla Network Security Services	Version 3.6.1
Mozilla Network Security Services	Version 3.6
Mozilla Network Security Services	Version 3.7.1
Mozilla Network Security Services	Version 3.7.2
Mozilla Network Security Services	Version 3.7.3
Mozilla Network Security Services	Version 3.7.5
Mozilla Network Security Services	Version 3.7.7
Mozilla Network Security Services	Version 3.7
Mozilla Network Security Services	Version 3.8
Mozilla Network Security Services	Version 3.9
Netscape Certificate Server	Version 1.0 patch1
Netscape Certificate Server	Version 4.2
Netscape Directory Server	Version 1.3 patch5
Netscape Directory Server	Version 3.12
Netscape Directory Server	Version 3.1 patch1
Netscape Directory Server	Version 4.11
Netscape Directory Server	Version 4.13
Netscape Directory Server	Version 4.1
Netscape Enterprise Server	Version 2.0.1c
Netscape Enterprise Server	Version 2.0
Netscape Enterprise Server	Version 2.0a
Netscape Enterprise Server	Version 3.0.1
Netscape Enterprise Server	Version 3.0.1b
Netscape Enterprise Server	Version 3.0.7a
Netscape Enterprise Server	Version 3.0
Netscape Enterprise Server	Version 3.0l
Netscape Enterprise Server	Version 3.1
Netscape Enterprise Server	Version 3.2
Netscape Enterprise Server	Version 3.3
Netscape Enterprise Server	Version 3.4
Netscape Enterprise Server	Version 3.5.1
Netscape Enterprise Server	Version 3.5
Netscape Enterprise Server	Version 3.5
Netscape Enterprise Server	Version 3.6
Netscape Enterprise Server	Version 3.6
Netscape Enterprise Server	Version 3.6 sp1
Netscape Enterprise Server	Version 3.6 sp2
Netscape Enterprise Server	Version 3.6 sp3
Netscape Enterprise Server	Version 4.0
Netscape Enterprise Server	Version 4.1.1
Netscape Enterprise Server	Version 4.1 sp3
Netscape Enterprise Server	Version 4.1 sp4
Netscape Enterprise Server	Version 4.1 sp5
Netscape Enterprise Server	Version 4.1 sp6
Netscape Enterprise Server	Version 4.1 sp7
Netscape Enterprise Server	Version 4.1 sp8
Netscape Enterprise Server	Version 5.0
Netscape Personalization Engine	All versions
Sun Java Enterprise System	Version 2003q4
Sun Java Enterprise System	Version 2004q2
Sun Java System Application Server	Version 7.0
Sun Java System Application Server	Version 7.0
Sun Java System Application Server	Version 7.0
Sun Java System Application Server	Version 7.0 ur4
Sun Java System Application Server	Version 7.1
Sun One Application Server	Version 6.0
Sun One Application Server	Version 6.0 sp1
Sun One Application Server	Version 6.0 sp2
Sun One Web Server	Version 4.1
Sun One Web Server	Version 4.1 sp10
Sun One Web Server	Version 4.1 sp11
Sun One Web Server	Version 4.1 sp12
Sun One Web Server	Version 4.1 sp13
Sun One Web Server	Version 4.1 sp14
Sun One Web Server	Version 4.1 sp1
Sun One Web Server	Version 4.1 sp2
Sun One Web Server	Version 4.1 sp3
Sun One Web Server	Version 4.1 sp4
Sun One Web Server	Version 4.1 sp5
Sun One Web Server	Version 4.1 sp6
Sun One Web Server	Version 4.1 sp7
Sun One Web Server	Version 4.1 sp8
Sun One Web Server	Version 4.1 sp9
Sun One Web Server	Version 6.0 sp3
Sun One Web Server	Version 6.0 sp4
Sun One Web Server	Version 6.0 sp5
Sun One Web Server	Version 6.0 sp7
Sun One Web Server	Version 6.0 sp8
Sun One Web Server	Version 6.1
Sun One Web Server	Version 6.1 sp1
Sun One Web Server	Version 6.1 sp2