CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
95.0%
Mozilla Firefox 2.0.0.20 and earlier allows remote attackers to cause a
denial of service (application crash) via nested calls to the window.print
function, as demonstrated by a window.print(window.print()) in the onclick
attribute of an INPUT element.
Author | Note |
---|---|
jdstrand | browser crash only |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | xulrunner | < 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.04.1 | UNKNOWN |
ubuntu | 8.10 | noarch | xulrunner | < 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.10.1 | UNKNOWN |
ubuntu | 9.04 | noarch | xulrunner | < 1.8.1.16+nobinonly-0ubuntu1 | UNKNOWN |
ubuntu | 9.10 | noarch | xulrunner | < 1.8.1.16+nobinonly-0ubuntu1 | UNKNOWN |