CVE-2006-5462

Impact:
Important
Public Date:
2006-11-08
Bugzilla:
1618211: CVE-2006-5462 security flaw

The MITRE CVE dictionary describes this issue as:

Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatures for SSL/TLS and email certificates. NOTE: this identifier is for unpatched product versions that were originally intended to be addressed by CVE-2006-4340.

Find out more about CVE-2006-5462 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2006:0735 2006-11-08
Red Hat Enterprise Linux 4 (firefox) RHSA-2006:0733 2006-11-08
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2006:0734 2006-11-08
Red Hat Enterprise Linux 4 RHSA-2006:0734 2006-11-08
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2006:0734 2006-11-08

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.