CVE-2015-2721

Severity

43%

Complexity

86%

Confidentiality

48%

Mozilla Network Security Services (NSS) before 3.19, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, Thunderbird before 38.1, and other products, does not properly determine state transitions for the TLS state machine, which allows man-in-the-middle attackers to defeat cryptographic protection mechanisms by blocking messages, as demonstrated by removing a forward-secrecy property by blocking a ServerKeyExchange message, aka a "SMACK SKIP-TLS" issue.

Mozilla Network Security Services (NSS) before 3.19, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, Thunderbird before 38.1, and other products, does not properly determine state transitions for the TLS state machine, which allows man-in-the-middle attackers to defeat cryptographic protection mechanisms by blocking messages, as demonstrated by removing a forward-secrecy property by blocking a ServerKeyExchange message, aka a "SMACK SKIP-TLS" issue.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N).

Overview

First reported 9 years ago

2015-07-06 02:00:00

Last updated 7 years ago

2018-01-05 02:30:00

Affected Software

Canonical Ubuntu Linux 12.04 LTS

12.04

Canonical Ubuntu Linux 14.04 LTS (Long-Term Support)

14.04

Canonical Ubuntu Linux 14.10

14.10

Canonical Ubuntu Linux 15.04

15.04

Debian Linux 7.0

7.0

Debian Linux 8.0 (Jessie)

8.0

Novell SUSE Linux Enterprise Desktop 12.0

12.0

Novell SUSE Linux Enterprise Server 12.0

12.0

Oracle Solaris 11.3

11.3

References

openSUSE-SU-2015:1229

openSUSE-SU-2015:1266

SUSE-SU-2015:1268

Third Party Advisory

SUSE-SU-2015:1269

Third Party Advisory

SUSE-SU-2015:1449

RHSA-2015:1185

RHSA-2015:1664

DSA-3324

Third Party Advisory

DSA-3336

Third Party Advisory

http://www.mozilla.org/security/announce/2015/mfsa2015-71.html

Vendor Advisory

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

Third Party Advisory

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Third Party Advisory

75541

83398

91787

Third Party Advisory

1032783

1032784

USN-2656-1

USN-2656-2

USN-2672-1

USN-2673-1

Third Party Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=1086145

Exploit, Issue Tracking, VDB Entry, Vendor Advisory

https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19_release_notes

Release Notes

GLSA-201512-10

GLSA-201701-46

https://smacktls.com

Technical Description

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.