CVE-2008-4324

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 3.0.2 through 3.0.3

Description: The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, via a series of keypress, click, onkeydown, onkeyup, onmousedown, and onmouseup events.

Recommendations: For Mozilla Firefox versions 3.0.2 through 3.0.3, consider disabling the user interface event dispatcher as a temporary workaround until a patch is available. Restrict access to the affected event handlers to minimize the risk of exploitation. Avoid triggering the series of keypress, click, onkeydown, onkeyup, onmousedown, and onmouseup events in the affected versions.