Lucene search
K

4 matches found

securityvulns
securityvulns
added 2008/07/18 12:0 a.m.89 views

ZDI-08-044: Mozilla Firefox CSSValue Array Memory Corruption Vulnerability

ZDI-08-044: Mozilla Firefox CSSValue Array Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-044 July 17, 2008 -- CVE ID: CVE-2008-2785 -- Affected Vendors: Mozilla Firefox -- Affected Products: Mozilla Firefox 2.0.x Mozilla Firefox 3.0.x -- TippingPointTM IPS...

9.3CVSS1AI score0.05284EPSS
Exploits1
seebug.org
seebug.org
added 2008/07/17 12:0 a.m.57 views

Firefox CSSValue数组数据结构远程代码执行漏洞

BUGTRAQ ID: 29802 CVECAN ID: CVE-2008-2785 Firefox是一款流行的开源WEB浏览器。 Mozilla的内部CSSValue数组数据结构对CSS对象的引用计数器使用了过小的变量, 如果攻击者对常见的CSS对象创建了大量引用的话,当浏览器试图释放仍在使用的CSS对象时计数器会被溢出,导致拒绝服务或在用户机器上执行任意指令。 Mozilla Firefox 3.0.1 Mozilla ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.mozilla.org/ RedHat ------...

9.3CVSS8.9AI score0.05284EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2008/07/16 1:0 p.m.5 views

mozilla: CSS reference counter overflow (ZDI-CAN-349)

Mozilla Firefox before 2.0.0.16 and 3.x before 3.0.1, Thunderbird before 2.0.0.16, and SeaMonkey before 1.1.11 use an incorrect integer data type as a CSS object reference counter in the CSSValue array aka nsCSSValue:Array data structure, which allows remote attackers to execute arbitrary code vi...

9.3CVSS6.3AI score0.05284EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2008/07/16 12:0 a.m.42 views

SeaMonkey < 1.1.11 CSSValue Array Memory Corruption

The installed version of SeaMonkey may allow a remote attacker to execute arbitrary code on the remote host by creating a very large number of references to a common CSS object, which can lead to an overflow the CSS reference counter, causing a crash when the browser attempts to free the CSS obje...

9.3CVSS6.1AI score0.05284EPSS
Exploits1References2
Rows per page
Query Builder