Vulnerability in Mozilla Firefox
CVE-2008-5021
nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by m…
Vulnerability class: Race Condition
EPSS: 0.036 (88.1th percentile) — read the EPSS interpretation.
Affected products
- Mozilla Firefox
- Mozilla Seamonkey
- Mozilla Thunderbird
- Novell Linux_desktop — versions 9
- Novell Open_enterprise_server
- Canonical Ubuntu_linux — versions 6.06, 7.10, 8.04
- Debian Debian_linux — versions 4.0
- Fedoraproject Fedora — versions 8, 9
- Opensuse — versions 10.2, 10.3, 11.0
- Suse Linux_enterprise_debuginfo — versions 10
Weakness classification (CWE)
References
- secalert@redhat.com (Third Party Advisory, vdb-entry, Broken Link, x_refsource_VUPEN)
- secalert@redhat.com (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_DEBIAN)
- secalert@redhat.com (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_DEBIAN)
- secalert@redhat.com (VDB Entry, Third Party Advisory, vdb-entry, Broken Link, x_refsource_BID)
- secalert@redhat.com (vendor-advisory, x_refsource_FEDORA, Mailing List, Third Party Advisory)
- secalert@redhat.com (x_refsource_SECUNIA, Third Party Advisory, Broken Link, third-party-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Third Party Advisory, Broken Link)
- secalert@redhat.com (vendor-advisory, Third Party Advisory, x_refsource_MANDRIVA, Broken Link)
- secalert@redhat.com (Third Party Advisory, vdb-entry, Broken Link, x_refsource_VUPEN)
- secalert@redhat.com (x_refsource_SECUNIA, Third Party Advisory, Broken Link, third-party-advisory)