Описание
The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via (1) a large switch statement, (2) certain uses of watch and eval, (3) certain uses of the mousedown event listener, and other vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.5.dfsg+1.5.0.15~prepatch080202a-0ubuntu1 |
| devel | DNE | |
| edgy | released | 2.0.0.12+0nobinonly+2-0ubuntu0.6.10 |
| feisty | released | 2.0.0.12+1nobinonly+2-0ubuntu0.7.4 |
| gutsy | released | 2.0.0.12+2nobinonly+2-0ubuntu0.7.10 |
| hardy | released | 2.0.0.12+2nobinonly+2-0ubuntu3 |
| intrepid | DNE | |
| upstream | released | 2.0.0.12 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| edgy | DNE | |
| feisty | DNE | |
| gutsy | ignored | end of life, was needs-triage |
| hardy | DNE | |
| intrepid | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| edgy | DNE | |
| feisty | DNE | |
| gutsy | DNE | |
| hardy | DNE | |
| intrepid | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| edgy | DNE | |
| feisty | DNE | |
| gutsy | DNE | |
| hardy | DNE | |
| intrepid | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.5.0.13+1.5.0.15~prepatch080227-0ubuntu0.6.06.0 |
| devel | DNE | |
| edgy | released | 1.5.0.13+1.5.0.15~prepatch080227-0ubuntu0.6.10.0 |
| feisty | released | 1.5.0.13+1.5.0.15~prepatch080227-0ubuntu0.7.04.0 |
| gutsy | DNE | |
| hardy | DNE | |
| intrepid | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | |
| edgy | DNE | |
| feisty | DNE | |
| gutsy | DNE | |
| hardy | not-affected | |
| intrepid | not-affected | |
| upstream | not-affected | 1.1.8 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 2.0.0.12+nobinonly-0ubuntu1 |
| edgy | DNE | |
| feisty | DNE | |
| gutsy | released | 2.0.0.12+nobinonly-0ubuntu0.7.10.0 |
| hardy | released | 2.0.0.12+nobinonly-0ubuntu1 |
| intrepid | released | 2.0.0.12+nobinonly-0ubuntu1 |
| upstream | not-affected | 2.0.0.12 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 1.8.1.13+nobinonly-0ubuntu1 |
| edgy | ignored | end of life, was needs-triage |
| feisty | ignored | end of life, was needs-triage |
| gutsy | released | 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.7.10.1 |
| hardy | released | 1.8.1.13+nobinonly-0ubuntu1 |
| intrepid | released | 1.8.1.13+nobinonly-0ubuntu1 |
| upstream | released | 1.8.1.13 |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via (1) a large switch statement, (2) certain uses of watch and eval, (3) certain uses of the mousedown event listener, and other vectors.
The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via (1) a large switch statement, (2) certain uses of watch and eval, (3) certain uses of the mousedown event listener, and other vectors.
The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird ...
The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via (1) a large switch statement, (2) certain uses of watch and eval, (3) certain uses of the mousedown event listener, and other vectors.
ELSA-2008-0103: Critical: firefox security update (CRITICAL)
EPSS
9.3 Critical
CVSS2