Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0413

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-0413
Last Modified 07 Mar 2011 10:04:40
Published 08 Feb 2008 05:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0413

Summary

The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via (1) a large switch statement, (2) certain uses of watch and eval, (3) certain uses of the mousedown event listener, and other vectors.

Vulnerable Systems

Application

  • Mozilla Firefox 2.0.0.11

  • Mozilla Seamonkey 1.1.7

  • Mozilla Thunderbird 2.0.0.11


References

FEDORA - FEDORA-2008-2118

FEDORA - FEDORA-2008-2060

FEDORA - FEDORA-2008-1535

FEDORA - FEDORA-2008-1459

FEDORA - FEDORA-2008-1435

CONFIRM - https://issues.rpath.com/browse/RPL-1995

CONFIRM - https://bugzilla.mozilla.org/buglist.cgi?bug_id=407720,390597,373344,398085,406572,391028,406036,402087

VUPEN - ADV-2008-2091

VUPEN - ADV-2008-1793

VUPEN - ADV-2008-0627

VUPEN - ADV-2008-0454

VUPEN - ADV-2008-0453

UBUNTU - USN-582-1

UBUNTU - USN-576-1

SECTRACK - 1019321

BID - 27683

BUGTRAQ - 20080229 rPSA-2008-0093-1 thunderbird

BUGTRAQ - 20080212 FLEA-2008-0001-1 firefox

BUGTRAQ - 20080209 rPSA-2008-0051-1 firefox

REDHAT - RHSA-2008:0105

REDHAT - RHSA-2008:0104

REDHAT - RHSA-2008:0103

CONFIRM - http://www.mozilla.org/security/announce/2008/mfsa2008-01.html

MANDRIVA - MDVSA-2008:062

MANDRIVA - MDVSA-2008:048

GENTOO - GLSA-200805-18

DEBIAN - DSA-1506

DEBIAN - DSA-1489

DEBIAN - DSA-1485

DEBIAN - DSA-1484

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0093

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2008-0093

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2008-0051

SUNALERT - 239546

SUNALERT - 238492

SLACKWARE - SSA:2008-061-01

SECUNIA - 31043

SECUNIA - 30620

SECUNIA - 29167

SECUNIA - 29086

SECUNIA - 29049

SECUNIA - 28958

SECUNIA - 28939

SECUNIA - 28924

SECUNIA - 28879

SECUNIA - 28877

SECUNIA - 28865

SECUNIA - 28864

SECUNIA - 28839

SECUNIA - 28818

SECUNIA - 28815

SECUNIA - 28808

SECUNIA - 28766

SECUNIA - 28758

SECUNIA - 28754

SUSE - SUSE-SA:2008:008

CONFIRM - http://browser.netscape.com/releasenotes/

UBUNTU - USN-582-2

SECUNIA - 30327

SECUNIA - 29211

SECUNIA - 29164

SECUNIA - 29098


Last Updated: 27 May 2016 10:46:48