PT-2007-4171 · Mozilla+1 · Thunderbird+3
Boris Zbarsky
+5
·
Publicado
2007-05-31
·
Atualizado
2018-10-16
·
CVE-2007-2867
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Mozilla Firefox versions 1.5.x through 1.5.0.11
Mozilla Firefox versions 2.x through 2.0.0.3
Thunderbird versions 1.5.x through 1.5.0.11
Thunderbird versions 2.x through 2.0.0.3
SeaMonkey version 1.0.9
SeaMonkey version 1.1.2
Description
The issue allows remote attackers to cause a denial of service, resulting in a crash, via vectors related to dangling pointers, heap corruption, signed/unsigned, and other issues.
Recommendations
For Mozilla Firefox versions 1.5.x through 1.5.0.11, update to version 1.5.0.12 or later.
For Mozilla Firefox versions 2.x through 2.0.0.3, update to version 2.0.0.4 or later.
For Thunderbird versions 1.5.x through 1.5.0.11, update to version 1.5.0.12 or later.
For Thunderbird versions 2.x through 2.0.0.3, update to version 2.0.0.4 or later.
For SeaMonkey version 1.0.9, update to a version later than 1.0.9.
For SeaMonkey version 1.1.2, update to a version later than 1.1.2.
Correção
DoS
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Firefox
Red Hat
Seamonkey
Thunderbird