Stack-based buffer overflow in the SSLv2 support in Mozilla Network
Security Services (NSS) before 3.11.5, as used by Firefox before 188.8.131.52
and 2.x before 184.108.40.206, Thunderbird before 220.127.116.11, SeaMonkey before
1.0.8, and certain Sun Java System server products before 20070611, allows
remote attackers to execute arbitrary code via invalid "Client Master Key"
Updated: 2016-03-23 03:28:01 UTC (commit 10817)