Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2114

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2114
Last Modified 21 Aug 2010 12:30:27
Published 05 Jul 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2114

Summary

Mozilla 1.7.8, Firefox 1.0.4, Camino 0.8.4, Netscape 8.0.2, and K-Meleon 0.9, and possibly other products that use the Gecko engine, allow remote attackers to cause a denial of service (application crash) via JavaScript that repeatedly calls an empty function.

Vulnerable Systems

Application

  • Mozilla 1.7.8

  • Mozilla Camino 0.8.4

  • Mozilla Firefox 1.0.4


References

MISC - http://www.kurczaba.com/html/security/0506241.htm

BUGTRAQ - 20050629 Mozilla Multiple Product JavaScript Issue

XF - mozilla-mult-browsers-javascript-dos(21188)

MISC - http://www.securiteam.com/securitynews/5OP0U00G1G.html

REDHAT - RHSA-2005:587

REDHAT - RHSA-2005:586

SECTRACK - 1014372

SECTRACK - 1014349

SECTRACK - 1014294

SECTRACK - 1014293

SECTRACK - 1014292


Last Updated: 27 May 2016 10:40:24