CVE-2004-1639

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 0.10 Mozilla version 5.0 Gecko version 20040913

Description The issue allows remote attackers to cause a denial of service, resulting in application crash or memory consumption, by sending a large binary file with a .html extension.

Recommendations For Mozilla Firefox versions prior to 0.10, update to a version later than 0.10 to resolve the issue. For Mozilla version 5.0, consider disabling the handling of large binary files with .html extensions as a temporary workaround until a patch is available. For Gecko version 20040913, restrict access to large binary files to minimize the risk of exploitation.