6.6 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.534 Medium
EPSS
Percentile
97.6%
Mozilla 1.7.8, Firefox 1.0.4, Camino 0.8.4, Netscape 8.0.2, and K-Meleon 0.9, and possibly other products that use the Gecko engine, allow remote attackers to cause a denial of service (application crash) via JavaScript that repeatedly calls an empty function.
CPE | Name | Operator | Version |
---|---|---|---|
mozilla:firefox | mozilla firefox | eq | 1.0.4 |
mozilla:camino | mozilla camino | eq | 0.8.4 |
mozilla:mozilla | mozilla | eq | 1.7.8 |
marc.info/?l=bugtraq&m=112008299210033&w=2
securitytracker.com/id?1014292
securitytracker.com/id?1014293
securitytracker.com/id?1014294
securitytracker.com/id?1014349
securitytracker.com/id?1014372
www.kurczaba.com/html/security/0506241.htm
www.redhat.com/support/errata/RHSA-2005-586.html
www.redhat.com/support/errata/RHSA-2005-587.html
www.securiteam.com/securitynews/5OP0U00G1G.html
exchange.xforce.ibmcloud.com/vulnerabilities/21188
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9628