Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:20872
HistoryNov 14, 2008 - 12:00 a.m.

Mozilla Foundation Security Advisory 2008-54

2008-11-1400:00:00
vulners.com
37
JSON

Mozilla Foundation Security Advisory 2008-54

Title: Buffer overflow in http-index-format parser
Impact: Critical
Announced: November 12, 2008
Reporter: Justin Schuh
Products: Firefox, SeaMonkey

Fixed in: Firefox 3.0.4
Firefox 2.0.0.18
SeaMonkey 1.1.13
Description

Justin Schuh of the IBM X-Force reported a flaw in the way Mozilla parses the http-index-format MIME type. By sending a specially crafted 200 header line in the HTTP index response, an attacker can cause the browser to crash and run arbitrary code on the victim's computer.
References

* https://bugzilla.mozilla.org/show_bug.cgi?id=443299
* CVE-2008-0017

Related

veracode 1
cve 2
checkpoint_advisories 1
prion 2
ubuntucve 1
mozilla 1
openvas 114
nessus 26
osv 1
debian 1
fedora 38
redhat 2
oraclelinux 2
centos 3
securityvulns 1
ubuntu 1
freebsd 1
suse 1
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:27:01
cve
cve
CVE-2008-0017
2008-11-13 11:30:00
CVE-2008-5020
2009-03-26 10:12:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Mozilla Firefox nsDirIndexParser Overflow
2008-11-21 00:00:00
prion
prion
Memory corruption
2008-11-13 11:30:00
Design/Logic Flaw
2009-03-26 10:12:00
ubuntucve
ubuntucve
CVE-2008-0017
2008-11-13 00:00:00
mozilla
mozilla
Buffer overflow in http-index-format parser — Mozilla
2008-11-12 00:00:00
openvas
openvas
Mandriva Update for firefox MDVSA-2008:230 (firefox)
2009-04-09 00:00:00
Mandriva Update for firefox MDVSA-2008:230 (firefox)
2009-04-09 00:00:00
CentOS Update for firefox CESA-2008:0978 centos4 x86_64
2009-02-27 00:00:00
nessus
nessus
Debian DSA-1671-1 : iceweasel - several vulnerabilities
2008-11-25 00:00:00
Oracle Linux 5 : firefox (ELSA-2008-0978)
2013-07-12 00:00:00
Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
osv
osv
iceweasel - several vulnerabilities
2008-11-24 00:00:00
debian
debian
[SECURITY] [DSA 1671-1] New iceweasel packages fix several vulnerabilities
2008-11-24 21:36:25
fedora
fedora
[SECURITY] Fedora 9 Update: ruby-gnome2-0.17.0-3.fc9
2008-11-14 12:52:42
[SECURITY] Fedora 9 Update: epiphany-extensions-2.22.1-5.fc9
2008-11-14 12:52:41
[SECURITY] Fedora 9 Update: kazehakase-0.5.6-1.fc9.1
2008-11-14 12:52:42
redhat
redhat
(RHSA-2008:0978) Critical: firefox security update
2008-11-12 00:00:00
(RHSA-2008:0977) Critical: seamonkey security update
2008-11-12 00:00:00
oraclelinux
oraclelinux
firefox security update
2008-11-13 00:00:00
seamonkey security update
2008-11-13 00:00:00
centos
centos
devhelp, firefox, nss, xulrunner, yelp security update
2008-11-14 23:55:42
seamonkey security update
2008-11-13 14:22:44
seamonkey security update
2008-11-13 06:38:44
securityvulns
securityvulns
Mozilla Firefox / Thinderbird / Seamonkey multiple security vulnerabilities
2008-11-14 00:00:00
ubuntu
ubuntu
Firefox and xulrunner vulnerabilities
2008-11-17 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2008-11-13 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey
2008-11-26 16:19:10
JSON
Related for SECURITYVULNS:DOC:20872
veracode1cve2checkpoint_advisories1prion2ubuntucve1mozilla1openvas114nessus26osv1debian1fedora38redhat2oraclelinux2centos3securityvulns1ubuntu1freebsd1suse1