[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

110139

 
 

909

 
 

85964

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Mozilla Thunderbird, Seamonkey and Firefox Denial of Service Vulnerability

ID: oval:org.mitre.oval:def:7030Date: (C)2009-12-26   (M)2018-03-13
Class: VULNERABILITYFamily: windows




The browser engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors related to (1) nsAsyncInstantiateEvent::Run, (2) nsStyleContext::Destroy, (3) nsComputedDOMStyle::GetWidth, (4) the xslt_attributeset_ImportSameName.html test case for the XSLT stylesheet compiler, (5) nsXULDocument::SynchronizeBroadcastListener, (6) IsBindingAncestor, (7) PL_DHashTableOperate and nsEditor::EndUpdateViewBatch, and (8) gfxSkipCharsIterator::SetOffsets, and other vectors.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows 10
Product:
Mozilla Thunderbird
Mozilla SeaMonkey
Mozilla Firefox
Reference:
CVE-2009-1302
CVE    1
CVE-2009-1302
CPE    80
cpe:/a:mozilla:thunderbird:::x86
cpe:/a:mozilla:seamonkey:1.1
cpe:/a:mozilla:seamonkey:::x86
cpe:/a:mozilla:seamonkey:1.0.1
...

© SecPod Technologies