CVE-2008-0016

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 2.0.0.17 SeaMonkey versions prior to 1.1.12

Description The issue is related to a stack-based buffer overflow in the URL parsing implementation, allowing remote attackers to execute arbitrary code via a crafted UTF-8 URL in a link. Multiple vulnerabilities in various packages of the Debian GNU/Linux operating system can lead to disruption of confidentiality, integrity, and availability of protected information, and can be exploited remotely.

Recommendations For Mozilla Firefox versions prior to 2.0.0.17, update to version 2.0.0.17 or later. For SeaMonkey versions prior to 1.1.12, update to version 1.1.12 or later. For libxul0d-dbg, libxul-dev, libsmjs1, libmozjs0d-dbg, libmozjs0d, libxul0d, libnss3-0d-dbg, libsmjs-dev, libnss3-0d, and libxul-common packages in Debian GNU/Linux, update to the latest version available. As a temporary workaround, consider restricting access to the affected packages until a patch is available.