Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRedhatCVELIST:CVE-2005-2871
HistorySep 09, 2005 - 4:00 a.m.

CVE-2005-2871

2005-09-0904:00:00
redhat
www.cve.org

7.5 High

AI Score

Confidence

Low

0.964 High

EPSS

Percentile

99.6%

JSON

Buffer overflow in the International Domain Name (IDN) support in Mozilla Firefox 1.0.6 and earlier, and Netscape 8.0.3.3 and 7.2, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a hostname with all “soft” hyphens (character 0xAD), which is not properly handled by the NormalizeIDN call in nsStandardURL::BuildNormalizedSpec.

References

Related

redhat 3
openvas 13
nessus 23
packetstorm 1
osv 3
debian 6
centos 4
nvd 1
checkpoint_advisories 2
ubuntu 1
freebsd 1
ubuntucve 1
cert 1
cve 1
gentoo 1
redhat
redhat
(RHSA-2005:768) firefox security update
2005-09-09 00:00:00
(RHSA-2005:769) mozilla security update
2005-09-09 00:00:00
(RHSA-2005:791) thunderbird security update
2005-10-06 00:00:00
openvas
openvas
FreeBSD Ports: firefox
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200509-11 (mozilla)
2008-09-24 00:00:00
FreeBSD Ports: firefox
2008-09-04 00:00:00
nessus
nessus
Debian DSA-837-1 : mozilla-firefox - buffer overflow
2005-10-05 00:00:00
Mozilla Thunderbird < 1.0.7 IDN URL Domain Name Overflow
2005-09-14 00:00:00
RHEL 2.1 / 3 / 4 : mozilla (RHSA-2005:769)
2005-09-12 00:00:00
packetstorm
packetstorm
pwnzilla.txt
2005-09-23 00:00:00
osv
osv
mozilla-firefox - buffer overflow
2005-10-02 00:00:00
mozilla - several
2005-10-20 00:00:00
mozilla-thunderbird - several
2005-10-20 00:00:00
debian
debian
[SECURITY] [DSA 837-1] New Mozilla Firefox packages fix denial of service
2005-10-02 06:07:56
[SECURITY] [DSA 837-1] New Mozilla Firefox packages fix denial of service
2005-10-02 06:07:56
[SECURITY] [DSA 866-1] New Mozilla packages fix several vulnerabilities
2005-10-20 05:44:19
centos
centos
mozilla security update
2005-09-10 08:21:32
mozilla security update
2005-09-11 23:22:26
firefox security update
2005-09-10 09:39:57
nvd
nvd
CVE-2005-2871
2005-09-09 18:03:00
checkpoint_advisories
checkpoint_advisories
Firefox Domain Name Handling Buffer Overflow (CVE-2005-2871)
2009-10-13 00:00:00
Firefox Hyphenated URL Buffer Overflow - Ver2 (CVE-2005-2871)
2014-03-03 00:00:00
ubuntu
ubuntu
Mozilla products vulnerability
2005-09-12 00:00:00
freebsd
freebsd
firefox & mozilla -- buffer overflow vulnerability
2005-09-08 00:00:00
ubuntucve
ubuntucve
CVE-2005-2871
2005-09-09 00:00:00
cert
cert
Mozilla-based browsers contain a buffer overflow in handling URIs containing a malformed IDN hostname
2005-09-09 00:00:00
cve
cve
CVE-2005-2871
2005-09-09 18:03:00
gentoo
gentoo
Mozilla Suite, Mozilla Firefox: Multiple vulnerabilities
2005-09-18 00:00:00

7.5 High

AI Score

Confidence

Low

0.964 High

EPSS

Percentile

99.6%

JSON
Related for CVELIST:CVE-2005-2871
redhat3openvas13nessus23packetstorm1osv3debian6centos4nvd1checkpoint_advisories2ubuntu1freebsd1ubuntucve1cert1cve1gentoo1