Lucene search
Mozilla FoundationMFSA2008-01HistoryFeb 07, 2008 - 12:00 a.m.
Crashes with evidence of memory corruption (rv:1.8.1.12) — Mozilla
2008-02-0700:00:00
Mozilla Foundation
www.mozilla.org
21
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.338
Percentile
97.1%
Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox 2.0.0.12 and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code.
Affected configurations
Node
mozillafirefoxRange<2.0.0.12
ORmozillaseamonkeyRange<1.1.8
ORmozillathunderbirdRange<2.0.0.12
Related
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2008-01
2008-02-10 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulonerabilities
2008-02-11 00:00:00
openvas
openvas
Slackware Advisory SSA:2008-061-01 mozilla-thunderbird
2012-09-11 00:00:00
Slackware: Security Advisory (SSA:2008-061-01)
2012-09-10 00:00:00
Ubuntu Update for mozilla-thunderbird USN-582-2
2009-03-23 00:00:00
nessus
nessus
Mozilla Thunderbird < 2.0.0.12 Multiple Vulnerabilities
2008-02-27 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 : mozilla-thunderbird (USN-582-2)
2013-03-09 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2008-03-01 23:36:00
cve
cve
CVE-2008-0413
2008-02-08 22:00:00
CVE-2008-0412
2008-02-08 22:00:00
prion
prion
Memory corruption
2008-02-08 22:00:00
Memory corruption
2008-02-08 22:00:00
ubuntucve
ubuntucve
CVE-2008-0413
2008-02-08 00:00:00
CVE-2008-0412
2008-02-08 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:19:44
Arbitrary Code Execution
2020-04-10 00:19:45
cvelist
cvelist
CVE-2008-0412
2008-02-08 21:00:00
CVE-2008-0413
2008-02-08 21:00:00
nvd
nvd
CVE-2008-0413
2008-02-08 22:00:00
CVE-2008-0412
2008-02-08 22:00:00
osv
osv
icedove - several vulnerabilities
2008-02-10 00:00:00
ubuntu
ubuntu
Thunderbird regression
2008-03-06 00:00:00
Thunderbird vulnerabilities
2008-02-29 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: thunderbird-2.0.0.12-1.fc7
2008-02-28 21:46:05
[SECURITY] Fedora 7 Update: seamonkey-1.1.8-1.fc7
2008-02-13 15:10:50
[SECURITY] Fedora 8 Update: seamonkey-1.1.8-1.fc8
2008-02-13 04:53:43
centos
centos
thunderbird security update
2008-02-08 19:19:22
firefox security update
2008-02-08 19:18:05
seebug
seebug
Mozilla Thunderbird/Seamonkey/Firefox 2.0.0.12修复多个安全漏洞
2008-02-22 00:00:00
oraclelinux
oraclelinux
Moderate: thunderbird security update
2008-02-08 00:00:00
Critical: firefox security update
2008-02-08 00:00:00
redhat
redhat
(RHSA-2008:0105) Critical: thunderbird security update
2008-02-07 00:00:00
(RHSA-2008:0103) Critical: firefox security update
2008-02-07 00:00:00
(RHSA-2008:0104) Critical: seamonkey security update
2008-02-07 00:00:00
debian
debian
[SECURITY] [DSA 1506-1] New iceape packages fix several vulnerabilities
2008-02-24 12:30:41
[SECURITY] [DSA 1506-2] New iceape packages fix regression
2008-03-20 01:41:06
suse
suse
remote code execution in MozillaFirefox,seamonkey
2008-02-15 17:07:07
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.338
Percentile
97.1%
Related for MFSA2008-01