10

CVE-2008-5500

The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via vectors related to (1) a reachable assertion or (2) an integer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaFirefox Version >= 2.0 < 2.0.0.19
MozillaFirefox Version >= 3.0 < 3.0.5
MozillaSeamonkey Version >= 1.0 < 1.1.14
MozillaThunderbird Version >= 2.0 < 2.0.0.19
CanonicalUbuntu Linux Version6.06 SwEditionlts
CanonicalUbuntu Linux Version7.10
CanonicalUbuntu Linux Version8.04 SwEditionlts
CanonicalUbuntu Linux Version8.10
DebianDebian Linux Version4.0
DebianDebian Linux Version5.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.55% 0.865
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/32882
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1021417
Third Party Advisory
VDB Entry
https://usn.ubuntu.com/690-1/
Third Party Advisory
https://usn.ubuntu.com/690-3/
Third Party Advisory