Описание
Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 do not properly handle JavaScript files that contain many functions, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted file that is accessed by debugging APIs, as demonstrated by Firebug.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux Extended Update Support 6.1 | firefox | Affected | ||
| Red Hat Enterprise Linux Extended Update Support 6.1 | thunderbird | Affected | ||
| Red Hat Enterprise Linux 4 | firefox | Fixed | RHSA-2011:1437 | 08.11.2011 |
| Red Hat Enterprise Linux 5 | firefox | Fixed | RHSA-2011:1437 | 08.11.2011 |
| Red Hat Enterprise Linux 5 | xulrunner | Fixed | RHSA-2011:1437 | 08.11.2011 |
| Red Hat Enterprise Linux 6 | firefox | Fixed | RHSA-2011:1437 | 08.11.2011 |
| Red Hat Enterprise Linux 6 | xulrunner | Fixed | RHSA-2011:1437 | 08.11.2011 |
| Red Hat Enterprise Linux 6 | thunderbird | Fixed | RHSA-2011:1439 | 08.11.2011 |
Показывать по
Дополнительная информация
Статус:
5.1 Medium
CVSS2
Связанные уязвимости
Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 do not properly handle JavaScript files that contain many functions, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted file that is accessed by debugging APIs, as demonstrated by Firebug.
Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 do not properly handle JavaScript files that contain many functions, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted file that is accessed by debugging APIs, as demonstrated by Firebug.
Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird befo ...
Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 do not properly handle JavaScript files that contain many functions, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted file that is accessed by debugging APIs, as demonstrated by Firebug.
5.1 Medium
CVSS2