Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4062

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4062
Last Modified 29 Oct 2012 11:16:30
Published 24 Sep 2008 04:37:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4062

Summary

Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the JavaScript engine and (1) misinterpretation of the characteristics of Namespace and QName in jsxml.c, (2) misuse of signed integers in the nsEscapeCount function in nsEscape.cpp, and (3) interaction of JavaScript garbage collection with certain use of an NPObject in the nsNPObjWrapper::GetNewOrUsed function in nsJSNPRuntime.cpp.

Vulnerable Systems

Application

  • Mozilla Firefox 0.10

  • Mozilla Firefox 0.10.1

  • Mozilla Firefox 0.8

  • Mozilla Firefox 0.9

  • Mozilla Firefox 0.9 Rc

  • Mozilla Firefox 0.9.1

  • Mozilla Firefox 0.9.2

  • Mozilla Firefox 0.9.3

  • Mozilla Firefox 1.0

  • Mozilla Firefox 1.0.1

  • Mozilla Firefox 1.0.2

  • Mozilla Firefox 1.0.3

  • Mozilla Firefox 1.0.4

  • Mozilla Firefox 1.0.5

  • Mozilla Firefox 1.0.6

  • Mozilla Firefox 1.0.7

  • Mozilla Firefox 1.0.8

  • Mozilla Firefox 1.5

  • Mozilla Firefox 1.5.0.1

  • Mozilla Firefox 1.5.0.10

  • Mozilla Firefox 1.5.0.11

  • Mozilla Firefox 1.5.0.12

  • Mozilla Firefox 1.5.0.2

  • Mozilla Firefox 1.5.0.3

  • Mozilla Firefox 1.5.0.4

  • Mozilla Firefox 1.5.0.5

  • Mozilla Firefox 1.5.0.6

  • Mozilla Firefox 1.5.0.7

  • Mozilla Firefox 1.5.0.8

  • Mozilla Firefox 1.5.0.9

  • Mozilla Firefox 1.5.1

  • Mozilla Firefox 1.5.2

  • Mozilla Firefox 1.5.3

  • Mozilla Firefox 1.5.4

  • Mozilla Firefox 1.5.5

  • Mozilla Firefox 1.5.6

  • Mozilla Firefox 1.5.7

  • Mozilla Firefox 1.5.8

  • Mozilla Firefox 1.8

  • Mozilla Firefox 2.0

  • Mozilla Firefox 2.0.0.1

  • Mozilla Firefox 2.0.0.10

  • Mozilla Firefox 2.0.0.11

  • Mozilla Firefox 2.0.0.12

  • Mozilla Firefox 2.0.0.13

  • Mozilla Firefox 2.0.0.14

  • Mozilla Firefox 2.0.0.15

  • Mozilla Firefox 2.0.0.16

  • Mozilla Firefox 3.0

  • Mozilla Firefox 3.0.1

  • Mozilla Seamonkey

  • Mozilla Seamonkey 1.0

  • Mozilla Seamonkey 1.0.1

  • Mozilla Seamonkey 1.0.2

  • Mozilla Seamonkey 1.0.3

  • Mozilla Seamonkey 1.0.4

  • Mozilla Seamonkey 1.0.5

  • Mozilla Seamonkey 1.0.6

  • Mozilla Seamonkey 1.0.7

  • Mozilla Seamonkey 1.0.8

  • Mozilla Seamonkey 1.0.9

  • Mozilla Seamonkey 1.0.99

  • Mozilla Seamonkey 1.1

  • Mozilla Seamonkey 1.1.1

  • Mozilla Seamonkey 1.1.10

  • Mozilla Seamonkey 1.1.11

  • Mozilla Thunderbird

  • Mozilla Thunderbird 0.1

  • Mozilla Thunderbird 0.2

  • Mozilla Thunderbird 0.3

  • Mozilla Thunderbird 0.4

  • Mozilla Thunderbird 0.5

  • Mozilla Thunderbird 0.6

  • Mozilla Thunderbird 0.7

  • Mozilla Thunderbird 0.7.1

  • Mozilla Thunderbird 0.7.2

  • Mozilla Thunderbird 0.7.3

  • Mozilla Thunderbird 0.8

  • Mozilla Thunderbird 0.9

  • Mozilla Thunderbird 1.0

  • Mozilla Thunderbird 1.0.1

  • Mozilla Thunderbird 1.0.2

  • Mozilla Thunderbird 1.0.3

  • Mozilla Thunderbird 1.0.4

  • Mozilla Thunderbird 1.0.5

  • Mozilla Thunderbird 1.0.6

  • Mozilla Thunderbird 1.0.7

  • Mozilla Thunderbird 1.0.8

  • Mozilla Thunderbird 1.5

  • Mozilla Thunderbird 1.5.0.1

  • Mozilla Thunderbird 1.5.0.10

  • Mozilla Thunderbird 1.5.0.11

  • Mozilla Thunderbird 1.5.0.2

  • Mozilla Thunderbird 1.5.0.3

  • Mozilla Thunderbird 1.5.0.4

  • Mozilla Thunderbird 1.5.0.6

  • Mozilla Thunderbird 1.5.0.7

  • Mozilla Thunderbird 1.5.0.8

  • Mozilla Thunderbird 1.5.0.9

  • Mozilla Thunderbird 1.5.1

  • Mozilla Thunderbird 1.5.2

  • Mozilla Thunderbird 1.7.1

  • Mozilla Thunderbird 1.7.3

  • Mozilla Thunderbird 2.0 .12

  • Mozilla Thunderbird 2.0 .13

  • Mozilla Thunderbird 2.0 .14

  • Mozilla Thunderbird 2.0 .4

  • Mozilla Thunderbird 2.0 .5

  • Mozilla Thunderbird 2.0 .6

  • Mozilla Thunderbird 2.0 .9

  • Mozilla Thunderbird 2.0 8

  • Mozilla Thunderbird 2.0.0.0

  • Mozilla Thunderbird 2.0.0.1

  • Mozilla Thunderbird 2.0.0.11

  • Mozilla Thunderbird 2.0.0.12

  • Mozilla Thunderbird 2.0.0.13

  • Mozilla Thunderbird 2.0.0.14

  • Mozilla Thunderbird 2.0.0.15

  • Mozilla Thunderbird 2.0.0.16

  • Mozilla Thunderbird 2.0.0.2

  • Mozilla Thunderbird 2.0.0.3

  • Mozilla Thunderbird 2.0.0.4

  • Mozilla Thunderbird 2.0.0.5

  • Mozilla Thunderbird 2.0.0.6

  • Mozilla Thunderbird 2.0.0.8

  • Mozilla Thunderbird 2.0.0.9


References

FEDORA - FEDORA-2008-8429

FEDORA - FEDORA-2008-8401

FEDORA - FEDORA-2008-8425

CONFIRM - https://bugzilla.mozilla.org/show_bug.cgi?id=445229

CONFIRM - https://bugzilla.mozilla.org/show_bug.cgi?id=444608

CONFIRM - https://bugzilla.mozilla.org/show_bug.cgi?id=367736

XF - multiple-mozilla-javascript-code-execution(45355)

VUPEN - ADV-2009-0977

VUPEN - ADV-2008-2661

UBUNTU - USN-647-1

UBUNTU - USN-645-2

UBUNTU - USN-645-1

SECTRACK - 1020916

BID - 31346

REDHAT - RHSA-2008:0908

REDHAT - RHSA-2008:0882

REDHAT - RHSA-2008:0879

CONFIRM - http://www.mozilla.org/security/announce/2008/mfsa2008-42.html

MANDRIVA - MDVSA-2008:206

MANDRIVA - MDVSA-2008:205

DEBIAN - DSA-1697

DEBIAN - DSA-1696

DEBIAN - DSA-1669

SUNALERT - 256408

SLACKWARE - SSA:2008-270-01

SLACKWARE - SSA:2008-269-01

SLACKWARE - SSA:2008-269-02

SECUNIA - 34501

SECUNIA - 33434

SECUNIA - 33433

SECUNIA - 32845

SECUNIA - 32144

SECUNIA - 32096

SECUNIA - 32095

SECUNIA - 32092

SECUNIA - 32089

SECUNIA - 32082

SECUNIA - 32044

SECUNIA - 32042

SECUNIA - 32025

SECUNIA - 32012

SECUNIA - 32011

SECUNIA - 32010

SECUNIA - 32007

SECUNIA - 31987

SECUNIA - 31985

SECUNIA - 31984

SUSE - SUSE-SA:2008:050

CONFIRM - http://download.novell.com/Download?buildid=WZXONb-tqBw~

DEBIAN - DSA-1649

SECUNIA - 32196

SECUNIA - 32185

Related Patches

Novell SUSE 2008:5654 gecko-sdk security update for SLE 10 i586


Last Updated: 27 May 2016 11:01:18