CVE-2011-3640 Information

Description

LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks DISPUTED LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks Untrusted search path vulnerability in Mozilla Network Security Services (NSS) as used in Google Chrome before 17 on Windows and Mac OS X might allow local users to gain privileges via a Trojan horse pkcs11.txt file in a top-level directory. NOTE: the vendor’s response was \Strange behavior but we’re not treating this as a security bug.\

Reference

http://blog.acrossecurity.com/2011/10/google-chrome-pkcs11txt-file-planting.html http://code.google.com/p/chromium/issues/detail?id=97426 http://securityreason.com/securityalert/8483 https://bugzilla.mozilla.org/show_bug.cgi?id=641052 https://hermes.opensuse.org/messages/13154861 https://hermes.opensuse.org/messages/13155432 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A13414