#VU15735 Man-in-the-middle attack in Mozilla NSS - CVE-2018-12384

Cybersecurity Help s.r.o.

Published: 2018-11-06

Vulnerability identifier: #VU15735

Vulnerability risk: Low

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-12384

CWE-ID: CWE-300

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Mozilla NSS
Universal components / Libraries / Libraries used by multiple products

Vendor: Mozilla

Description

The vulnerability allows a remote attacker to conduct man-in-the-middle attack on the target system.

The weakness exists due to ServerHello.random is all zero when handling a v2-compatible ClientHello. A remote attacker can use man-in-the-middle techniques to conduct passive replay attack and obtain potentially sensitive information.

Mitigation
The vulnerability has been fixed in the versions 3.36.5, 3.39.

Vulnerable software versions

Mozilla NSS: 3.24 - 3.38

External links
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.36.5_release_notes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.39_release_notes

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell EMC Cloud Tiering Appliance Family

Multiple vulnerabilities in Dell EMC Data Computing Appliance (DCA)

Multiple vulnerabilities in Dell EMC Unity Family

Ubuntu update for NSS

OpenSUSE Linux update for mozilla-nspr and mozilla-nss

OpenSUSE Linux update for mozilla-nss

Information disclosure in Mozilla NSS

Amazon Linux AMI update for nss

Red Hat update for nss

Man-in-the-middle attack in nss (Alpine package)