Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-5178

Опубликовано: 09 мая 2018
Источник: redhat
CVSS3: 8.1
EPSS Средний

Описание

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 8firefoxNot affected
Red Hat Enterprise Linux 8thunderbirdNot affected
Red Hat Enterprise Linux 6firefoxFixedRHSA-2018:141414.05.2018
Red Hat Enterprise Linux 6thunderbirdFixedRHSA-2018:172624.05.2018
Red Hat Enterprise Linux 7firefoxFixedRHSA-2018:141514.05.2018
Red Hat Enterprise Linux 7thunderbirdFixedRHSA-2018:172524.05.2018

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-120
https://bugzilla.redhat.com/show_bug.cgi?id=1576278Mozilla: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension

EPSS

Процентиль: 95%
0.18917
Средний

8.1 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-5178

CVSS3: 8.1
ubuntu
больше 7 лет назад

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.

nvd логотип

CVE-2018-5178

CVSS3: 8.1
nvd
больше 7 лет назад

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.

debian логотип

CVE-2018-5178

CVSS3: 8.1
debian
больше 7 лет назад

A buffer overflow was found during UTF8 to Unicode string conversion w ...

github логотип

GHSA-2fp8-wvjf-2gv9

CVSS3: 8.1
github
больше 3 лет назад

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.

fstec логотип

BDU:2021-04140

CVSS3: 8.1
fstec
больше 7 лет назад

Уязвимость браузеров Firefox ESR, Firefox и почтового клиента Thunderbird, связанная с выходом операции за границы буфера в памяти во время преобразования строки UTF-8 в Unicode, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 95%
0.18917
Средний

8.1 High

CVSS3