CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
99.7%
As part of the Firefox 2.0.0.4 and 1.5.0.12 update releases Mozilla developers fixed many bugs to improve the stability of the product. Some of these crashes that showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code.
nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2867
nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2868
bugzilla.mozilla.org/show_bug.cgi?id=306902
bugzilla.mozilla.org/show_bug.cgi?id=336574
bugzilla.mozilla.org/show_bug.cgi?id=336744
bugzilla.mozilla.org/show_bug.cgi?id=336994
bugzilla.mozilla.org/show_bug.cgi?id=348492
bugzilla.mozilla.org/show_bug.cgi?id=351102
bugzilla.mozilla.org/show_bug.cgi?id=362708
bugzilla.mozilla.org/show_bug.cgi?id=367121
bugzilla.mozilla.org/show_bug.cgi?id=367561
bugzilla.mozilla.org/show_bug.cgi?id=367630
bugzilla.mozilla.org/show_bug.cgi?id=369150
bugzilla.mozilla.org/show_bug.cgi?id=369249
bugzilla.mozilla.org/show_bug.cgi?id=369542
bugzilla.mozilla.org/show_bug.cgi?id=369666
bugzilla.mozilla.org/show_bug.cgi?id=369714
bugzilla.mozilla.org/show_bug.cgi?id=370101
bugzilla.mozilla.org/show_bug.cgi?id=370360
bugzilla.mozilla.org/show_bug.cgi?id=370488
bugzilla.mozilla.org/show_bug.cgi?id=371124
bugzilla.mozilla.org/show_bug.cgi?id=372237
bugzilla.mozilla.org/show_bug.cgi?id=372285
bugzilla.mozilla.org/show_bug.cgi?id=372376
bugzilla.mozilla.org/show_bug.cgi?id=374584
bugzilla.mozilla.org/show_bug.cgi?id=375183
bugzilla.mozilla.org/show_bug.cgi?id=375196
bugzilla.mozilla.org/show_bug.cgi?id=375711
bugzilla.mozilla.org/show_bug.cgi?id=376223
bugzilla.mozilla.org/show_bug.cgi?id=377216
bugzilla.mozilla.org/show_bug.cgi?id=378273
bugzilla.mozilla.org/show_bug.cgi?id=378325