CVE-2007-0777

Mozilla Firefox <1.5.0.10/2.x<2.0.0.2, Thunderbird <1.5.0.10, SeaMonkey <1.0.8 - RCE via JS Memory Corruption

Title source: llm
STIX 2.1

Description

The JavaScript engine in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain vectors that trigger memory corruption.

References (61)

Core 61
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/461336/100/0/threaded
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0078.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24395
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/269484
Broken Link vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2747
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24328
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0108.html
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200703-04.xml
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24252
Third Party Advisory vendor-advisory x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200703-08.xml
Mailing List, Third Party Advisory vendor-advisory x_refsource_slackware
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.374851
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24384
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24406
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24457
Third Party Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:052
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24343
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0718
Broken Link vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2749
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200703-18.xml
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24650
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-428-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24320
Broken Link x_refsource_confirm
https://issues.rpath.com/browse/RPL-1103
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/32699
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0083
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/461809/100/0/threaded
Broken Link vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_22_mozilla.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24293
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24238
Mailing List, Third Party Advisory vendor-advisory x_refsource_slackware
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.363947
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24456
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24393
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24342
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24287
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24522
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/22694
Broken Link vdb-entry x_refsource_osvdb
http://www.osvdb.org/32115
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0719
Broken Link vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2713
Patch, Vendor Advisory x_refsource_confirm
http://www.mozilla.org/security/announce/2007/mfsa2007-01.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-431-1
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0097.html
Broken Link vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2728
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24205
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24389
Broken Link x_refsource_confirm
https://issues.rpath.com/browse/RPL-1081
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24410
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24333
Third Party Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:050
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24290
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24455
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2007-0077.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1017698
Mailing List, Third Party Advisory vendor-advisory x_refsource_slackware
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.338131
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0079.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24437

Scores

EPSS 0.0756
EPSS Percentile 93.8%

Details

CWE
CWE-119
Status published
Products (6)
canonical/ubuntu_linux 5.10
canonical/ubuntu_linux 6.06
canonical/ubuntu_linux 6.10
mozilla/firefox 1.5 - 1.5.0.10
mozilla/seamonkey < 1.0.8
mozilla/thunderbird < 1.5.0.10
Published Feb 26, 2007
Tracked Since Feb 18, 2026