CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
97.2%
The Web Worker functionality in Mozilla Firefox 3.0.x before 3.0.18 and
3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly handle
array data types for posted messages, which allows remote attackers to
cause a denial of service (heap memory corruption and application crash) or
possibly execute arbitrary code via unspecified vectors.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | seamonkey | < 2.0.8+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
ubuntu | 9.04 | noarch | seamonkey | < 2.0.8+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
ubuntu | 9.10 | noarch | seamonkey | < 2.0.8+build1+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
ubuntu | 10.04 | noarch | seamonkey | < 2.0.8+build1+nobinonly-0ubuntu0.10.04.1 | UNKNOWN |
ubuntu | 8.04 | noarch | xulrunner-1.9 | < 1.9.0.18+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
ubuntu | 8.10 | noarch | xulrunner-1.9 | < 1.9.0.18+build1+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
ubuntu | 9.04 | noarch | xulrunner-1.9 | < 1.9.0.18+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
ubuntu | 9.04 | noarch | xulrunner-1.9.1 | < 1.9.1.8+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
ubuntu | 9.10 | noarch | xulrunner-1.9.1 | < 1.9.1.8+build1+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |