[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250108

 
 

909

 
 

196064

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-0592Date: (C)2008-02-08   (M)2023-12-22


Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows user-assisted remote attackers to cause a denial of service via a plain .txt file with a "Content-Disposition: attachment" and an invalid "Content-Type: plain/text," which prevents Firefox from rendering future plain text files within the browser.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1019340
http://www.securityfocus.com/archive/1/487826/100/0/threaded
http://www.securityfocus.com/archive/1/488002/100/0/threaded
SUNALERT-238492
BID-27683
SECUNIA-28754
SECUNIA-28818
SECUNIA-28864
SECUNIA-28865
SECUNIA-28877
SECUNIA-28879
SECUNIA-28924
SECUNIA-28939
SECUNIA-28958
SECUNIA-29086
SECUNIA-29167
SECUNIA-29567
SECUNIA-30327
SECUNIA-30620
ADV-2008-0453
ADV-2008-0627
ADV-2008-1793
DSA-1484
DSA-1485
DSA-1489
DSA-1506
FEDORA-2008-1435
FEDORA-2008-1459
FEDORA-2008-1535
FEDORA-2008-2060
FEDORA-2008-2118
GLSA-200805-18
MDVSA-2008:048
RHSA-2008:0103
RHSA-2008:0104
RHSA-2008:0105
SUSE-SA:2008:008
USN-576-1
http://browser.netscape.com/releasenotes/
http://support.novell.com/techcenter/psdb/6251b18e050302ebe7fe74294b55c818.html
http://wiki.rpath.com/Advisories:rPSA-2008-0051
http://www.mozilla.org/security/announce/2008/mfsa2008-09.html
https://bugzilla.mozilla.org/show_bug.cgi?id=387258
oval:org.mitre.oval:def:9972

CPE    2
cpe:/a:mozilla:seamonkey
cpe:/a:mozilla:firefox
OVAL    5
oval:org.mitre.oval:def:7909
oval:org.mitre.oval:def:8000
oval:org.secpod.oval:def:301272
oval:org.mitre.oval:def:7914
...

© SecPod Technologies