CVE-2008-5715

2008-12-2400:00:00

ubuntu.com

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.026 Low

EPSS

Percentile

90.3%

JSON

Mozilla Firefox 3.0.5 on Windows Vista allows remote attackers to cause a
denial of service (application crash) via JavaScript code with a long
string value for the hash property (aka location.hash). NOTE: it was later
reported that earlier versions are also affected, and that the impact is
CPU consumption and application hang in unspecified circumstances perhaps
involving other platforms.