Lucene search

[email protected]CVE-2008-0592

HistoryFeb 09, 2008 - 12:00 a.m.

CVE-2008-0592

2008-02-0900:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2008-0592

mozilla firefox

seamonkey

denial of service

nvd

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.072 Low

EPSS

Percentile

94.0%

JSON

Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows user-assisted remote attackers to cause a denial of service via a plain .txt file with a “Content-Disposition: attachment” and an invalid “Content-Type: plain/text,” which prevents Firefox from rendering future plain text files within the browser.

CPENameOperatorVersion
mozilla:seamonkeymozilla seamonkeyle1.1.7
mozilla:firefoxmozilla firefoxle2.0.0.11

CPE	Name	Operator	Version
mozilla:seamonkey	mozilla seamonkey	le	1.1.7
mozilla:firefox	mozilla firefox	le	2.0.0.11

References

browser.netscape.com/releasenotes/

lists.opensuse.org/opensuse-security-announce/2008-02/msg00006.html

secunia.com/advisories/28754

secunia.com/advisories/28818

secunia.com/advisories/28864

secunia.com/advisories/28865

secunia.com/advisories/28877

secunia.com/advisories/28879

secunia.com/advisories/28924

secunia.com/advisories/28939

secunia.com/advisories/28958

secunia.com/advisories/29086

secunia.com/advisories/29167

secunia.com/advisories/29567

secunia.com/advisories/30327

secunia.com/advisories/30620

sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1

support.novell.com/techcenter/psdb/6251b18e050302ebe7fe74294b55c818.html

wiki.rpath.com/Advisories:rPSA-2008-0051

www.debian.org/security/2008/dsa-1484

www.debian.org/security/2008/dsa-1485

www.debian.org/security/2008/dsa-1489

www.debian.org/security/2008/dsa-1506

www.gentoo.org/security/en/glsa/glsa-200805-18.xml

www.mandriva.com/security/advisories?name=MDVSA-2008:048

www.mozilla.org/security/announce/2008/mfsa2008-09.html

www.redhat.com/support/errata/RHSA-2008-0103.html

www.redhat.com/support/errata/RHSA-2008-0104.html

www.redhat.com/support/errata/RHSA-2008-0105.html

www.securityfocus.com/archive/1/487826/100/0/threaded

www.securityfocus.com/archive/1/488002/100/0/threaded

www.securityfocus.com/bid/27683

www.securitytracker.com/id?1019340

www.ubuntu.com/usn/usn-576-1

www.vupen.com/english/advisories/2008/0453/references

www.vupen.com/english/advisories/2008/0627/references

www.vupen.com/english/advisories/2008/1793/references

bugzilla.mozilla.org/show_bug.cgi?id=387258

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9972

www.redhat.com/archives/fedora-package-announce/2008-February/msg00274.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00309.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00381.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00905.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00946.html

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.072 Low

EPSS

Percentile

94.0%

JSON

Related for CVE-2008-0592

mozilla1 prion1 ubuntucve1 veracode1 cvelist1 securityvulns2 nessus32 openvas112 redhat3 fedora31 centos3 seebug1 oraclelinux3 debian4 suse1 freebsd1 osv1