CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
EPSS
Percentile
93.6%
Mozilla Firefox 3.0.x, 3.5, and 3.5.1 on Windows allows remote attackers to
cause a denial of service (uncaught exception and application crash) via a
long Unicode string argument to the write method. NOTE: this was originally
reported as a stack-based buffer overflow. NOTE: on Linux and Mac OS X, a
crash resulting from this long string reportedly occurs in an
operating-system library, not in Firefox.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 9.04 | noarch | firefox-3.5 | <ย 3.5.3+build1+nobinonly-0ubuntu0.9.04.2 | UNKNOWN |
ubuntu | 9.04 | noarch | xulrunner-1.9.1 | <ย 1.9.1.3+build1+nobinonly-0ubuntu0.9.04.2 | UNKNOWN |