10

CVE-2008-5052

The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaFirefox Version >= 2.0 < 2.0.0.18
MozillaSeamonkey Version >= 1.0 <= 1.1.13
MozillaThunderbird Version >= 2.0 < 2.0.0.18
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 23.01% 0.957
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
http://www.us-cert.gov/cas/techalerts/TA08-319A.html
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/32281
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1021183
Third Party Advisory
VDB Entry