CVE-2007-2867

Mozilla Firefox <1.5.0.12 & Thunderbird <2.0.0.4 - DoS

Title source: llm
STIX 2.1

Description

Multiple vulnerabilities in the layout engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service (crash) via vectors related to dangling pointers, heap corruption, signed/unsigned, and other issues.

References (60)

Core 60
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25496
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018153
Mailing List vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2747
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1308
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34604
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018151
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:120
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27423
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/470172/100/200/threaded
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24406
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25647
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25469
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35134
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_36_mozilla.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25491
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200706-06.xml
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25635
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25534
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1994
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0400.html
Mailing List vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2749
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-469-1
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:131
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1305
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25533
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10066
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1306
Issue Tracking x_refsource_confirm
https://issues.rpath.com/browse/RPL-1424
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/751636
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25664
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:119
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103136-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24456
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25644
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25858
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-468-1
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0082
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0401.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25476
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:126
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201532-1
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/24242
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25750
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3664
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25489
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1300
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25559
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28363
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25490
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25488
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25492
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0402.html
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-151A.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25685
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/471842/100/0/threaded

Scores

EPSS 0.0341
EPSS Percentile 87.5%

Details

CWE
CWE-119
Status published
Products (45)
mozilla/firefox 1.5
mozilla/firefox 1.5.0.1
mozilla/firefox 1.5.0.2
mozilla/firefox 1.5.0.3
mozilla/firefox 1.5.0.4
mozilla/firefox 1.5.0.5
mozilla/firefox 1.5.0.6
mozilla/firefox 1.5.0.7
mozilla/firefox 1.5.0.8
mozilla/firefox 1.5.0.9
... and 35 more
Published Jun 01, 2007
Tracked Since Feb 18, 2026