Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:55
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt - | |
References | () http://secunia.com/advisories/14654 - Patch, Vendor Advisory | |
References | () http://secunia.com/advisories/19823 - | |
References | () http://www.ciac.org/ciac/bulletins/p-160.shtml - | |
References | () http://www.gentoo.org/security/en/glsa/glsa-200503-30.xml - Vendor Advisory | |
References | () http://www.kb.cert.org/vuls/id/557948 - Third Party Advisory, US Government Resource | |
References | () http://www.mozilla.org/security/announce/mfsa2005-30.html - Vendor Advisory | |
References | () http://www.novell.com/linux/security/advisories/2006_04_25.html - | |
References | () http://www.redhat.com/support/errata/RHSA-2005-323.html - Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2005-335.html - Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2005-336.html - Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2005-337.html - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/12881 - | |
References | () http://www.securityfocus.com/bid/15495 - | |
References | () http://www.vupen.com/english/advisories/2005/0296 - | |
References | () http://xforce.iss.net/xforce/alerts/id/191 - Vendor Advisory | |
References | () https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=150877 - Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/19269 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100028 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11377 - |
Information
Published : 2005-05-02 04:00
Updated : 2024-11-20 23:55
NVD link : CVE-2005-0399
Mitre link : CVE-2005-0399
CVE.ORG link : CVE-2005-0399
JSON object : View
Products Affected
mozilla
- firefox
- mozilla
- thunderbird
CWE