Lucene search
Mozilla FoundationMFSA2007-38HistoryNov 26, 2007 - 12:00 a.m.
Memory corruption vulnerabilities (rv:1.8.1.10) — Mozilla
2007-11-2600:00:00
Mozilla Foundation
www.mozilla.org
5
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.945 High
EPSS
Percentile
99.2%
The Firefox 2.0.0.10 update contains fixes for three bugs that improve the stability of the product. These crashes showed some evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code.
Related
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2007-38
2007-11-27 00:00:00
Mozilla Firefox / Seamonkey multiple security vulnerabilities
2007-11-27 00:00:00
ubuntucve
ubuntucve
CVE-2007-5959
2007-11-26 00:00:00
freebsd
freebsd
firefox -- multiple remote unspecified memory corruption vulnerabilities
2007-11-26 00:00:00
openvas
openvas
FreeBSD Ports: firefox
2008-09-04 00:00:00
FreeBSD Ports: firefox
2008-09-04 00:00:00
Fedora Update for openvrml FEDORA-2007-3962
2009-02-27 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox Layout Frame Constructor Memory Corruption (CVE-2007-5959)
2010-02-24 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:18:42
cve
cve
CVE-2007-5959
2007-11-26 23:46:00
nessus
nessus
FreeBSD : firefox -- multiple remote unspecified memory corruption vulnerabilities (f1f6f6da-9d2f-11dc-9114-001c2514716c)
2007-11-29 00:00:00
RHEL 2.1 / 3 / 4 : seamonkey (RHSA-2007:1084)
2007-11-29 00:00:00
Ubuntu 6.10 / 7.04 / 7.10 : firefox regression (USN-546-2)
2007-12-07 00:00:00
prion
prion
Memory corruption
2007-11-26 23:46:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: firefox-1.5.0.12-7.fc6
2007-12-03 15:43:57
centos
centos
firefox security update
2007-11-29 13:07:34
thunderbird security update
2007-12-21 16:34:10
seamonkey security update
2007-11-28 19:08:58
oraclelinux
oraclelinux
Critical: seamonkey security update
2007-11-27 00:00:00
Critical: firefox security update
2007-11-27 00:00:00
Moderate: thunderbird security update
2007-12-19 00:00:00
debian
debian
[SECURITY] [DSA 1424-1] New iceweasel packages fix several vulnerabilities
2007-12-08 11:34:00
[SECURITY] [DSA 1425-1] New xulrunner packages fix several vulnerabilities
2007-12-08 11:40:53
gentoo
gentoo
Mozilla Firefox, SeaMonkey: Multiple vulnerabilities
2007-12-29 00:00:00
osv
osv
xulrunner - several vulnerabilities
2007-12-08 00:00:00
iceweasel - several vulnerabilities
2007-12-08 00:00:00
iceape - several vulnerabilities
2008-02-24 00:00:00
redhat
redhat
(RHSA-2007:1084) Critical: seamonkey security update
2007-11-26 00:00:00
(RHSA-2007:1082) Critical: firefox security update
2007-11-26 00:00:00
(RHSA-2007:1083) Moderate: thunderbird security update
2007-12-19 00:00:00
suse
suse
remote code execution in MozillaFirefox
2007-12-05 17:10:54
ubuntu
ubuntu
Firefox regression
2007-12-04 00:00:00
Firefox vulnerabilities
2007-11-26 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.945 High
EPSS
Percentile
99.2%
Related for MFSA2007-38