Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

CVE-2008-0017 (firefox, seamonkey)
BugsAlert Home > CVE-2008-0017 (firefox, seamonkey)
 
 

The http-index-format MIME type parser (nsDirIndexParser) in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP index response with a crafted 200 header, which triggers memory corruption and a buffer overflow.




Original Source: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-0017

Learn more about CVE-2008-0017 (firefox, seamonkey)
 
Tags: cve-2008-0017 firefox seamonkey

Related Items
      CVE-2008-3719 (affiliate_directory)

      FrSIRT - Chilkat HTTP ActiveX Component File Corruption Vulnerability

      VU#281977:Quiksoft EasyMail SMTP ActiveX control stack buffer overflow vulnerabilities

      RedHat: Important: xorg-x11-server security update

      Bugtraq: rPSA-2008-0327-1 httpd mod_ssl

      Fedora Security Update xorg-x11-server Security Bypass Vulnerability

      CVE-2008-4841 (wordpad)

 
© 2007-2009 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel