- Description
- nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors involving a "particular sequence of HTML tags" that leads to memory corruption.
- Source
- secalert@redhat.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
- nvd@nist.gov
- CWE-399
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "05297AE0-FEDE-4682-A26C-2077E3F02A89",
"versionEndIncluding": "1.5",
"versionStartIncluding": "1.0"
},
{
"criteria": "cpe:2.3:a:mozilla:mozilla_suite:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F7DD4CED-138F-415C-9F00-583D92BB3C3E",
"versionEndExcluding": "1.7.13"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CB8DE1B0-ACE1-4720-91AE-3C85EF754387",
"versionEndExcluding": "1.0"
},
{
"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A088F32-0EA7-465D-A648-9802F9B6164C",
"versionEndExcluding": "1.0.8",
"versionStartIncluding": "1.0"
}
],
"operator": "OR"
}
]
}
]