Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3444

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-3444
Last Modified 10 Sep 2008 09:12:42
Published 04 Aug 2008 06:59:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3444

Summary

The content layout component in Mozilla Firefox 3.0 and 3.0.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted but well-formed web page that contains "a simple set of legitimate HTML tags."

Vulnerable Systems

Application

  • Mozilla Firefox 3.0

  • Mozilla Firefox 3.0.1


References

CONFIRM - https://bugzilla.mozilla.org/show_bug.cgi?id=448564

XF - firefox-contentlayout-dos(44169)

BID - 30486

MISC - http://www.radware.com/newsevents/pressrelease.aspx?id=6459

CONFIRM - http://blog.mozilla.com/security/2008/07/30/low-risk-denial-of-service-in-firefox/


Last Updated: 27 May 2016 10:48:12