Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2008-5052
HistoryNov 13, 2008 - 11:30 a.m.

CVE-2008-5052

2008-11-1311:30:01
CWE-399
redhat
web.nvd.nist.gov
40
cve-2008-5052
javascript engine
remote code execution
memory corruption
denial of service
mozilla firefox
thunderbird
seamonkey

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.9

Confidence

High

EPSS

0.023

Percentile

89.6%

JSON

The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js.

Affected configurations

Nvd
Node
mozillafirefoxRange2.02.0.0.18
OR
mozillaseamonkeyRange1.01.1.13
OR
mozillathunderbirdRange2.02.0.0.18
VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
mozillaseamonkey*cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
mozillathunderbird*cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

Related

ubuntucve 1
cvelist 1
prion 1
nvd 1
openvas 29
nessus 22
redhat 3
centos 4
oraclelinux 3
suse 1
securityvulns 1
gentoo 1
ubuntucve
ubuntucve
CVE-2008-5052
2008-11-13 00:00:00
cvelist
cvelist
CVE-2008-5052
2008-11-13 11:00:00
prion
prion
Memory corruption
2008-11-13 11:30:00
nvd
nvd
CVE-2008-5052
2008-11-13 11:30:01
openvas
openvas
Mozilla Thunderbird Multiple Vulnerabilities November-08 (Linux)
2008-11-21 00:00:00
Mandriva Update for mozilla-thunderbird MDVSA-2008:235 (mozilla-thunderbird)
2009-04-09 00:00:00
Mandriva Update for mozilla-thunderbird MDVSA-2008:235 (mozilla-thunderbird)
2009-04-09 00:00:00
nessus
nessus
Oracle Linux 4 : thunderbird (ELSA-2008-0976)
2013-07-12 00:00:00
Mandriva Linux Security Advisory : mozilla-thunderbird (MDVSA-2008:235)
2009-04-23 00:00:00
CentOS 4 / 5 : thunderbird (CESA-2008:0976)
2010-01-06 00:00:00
redhat
redhat
(RHSA-2008:0976) Moderate: thunderbird security update
2008-11-19 00:00:00
(RHSA-2008:0977) Critical: seamonkey security update
2008-11-12 00:00:00
(RHSA-2008:0978) Critical: firefox security update
2008-11-12 00:00:00
centos
centos
thunderbird security update
2008-11-23 13:34:31
devhelp, firefox, nss, xulrunner, yelp security update
2008-11-14 23:55:42
seamonkey security update
2008-11-13 06:38:44
oraclelinux
oraclelinux
thunderbird security update
2008-11-20 00:00:00
firefox security update
2008-11-13 00:00:00
seamonkey security update
2008-11-13 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey
2008-11-26 16:19:10
securityvulns
securityvulns
Mozilla Firefox / Thinderbird / Seamonkey multiple security vulnerabilities
2008-11-14 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.9

Confidence

High

EPSS

0.023

Percentile

89.6%

JSON
Related for CVE-2008-5052
ubuntucve1cvelist1prion1nvd1openvas29nessus22redhat3centos4oraclelinux3suse1securityvulns1gentoo1