CVE-2007-2868

Mozilla Firefox <1.5.0.12 & Thunderbird <2.0.0.4 - DoS/Code Injection

Title source: llm
STIX 2.1

Description

Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger memory corruption.

References (60)

Core 60
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25489
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25496
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018153
Mailing List vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2747
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1308
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27427
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018151
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201505-1
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10711
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:120
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/470172/100/200/threaded
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24406
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25647
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25469
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103125-1
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_36_mozilla.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25491
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200706-06.xml
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25635
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25534
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1994
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0400.html
Mailing List vendor-advisory x_refsource_fedora
http://fedoranews.org/cms/node/2749
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-469-1
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:131
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1305
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25533
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1306
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018152
Issue Tracking x_refsource_confirm
https://issues.rpath.com/browse/RPL-1424
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25664
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:119
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24456
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25644
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25858
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-468-1
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/609956
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0082
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0401.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25476
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3632
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34605
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35138
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/24242
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25750
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1300
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25559
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28363
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25490
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25488
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25492
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0402.html
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-151A.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25685
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/471842/100/0/threaded

Scores

EPSS 0.0487
EPSS Percentile 91.0%

Details

CWE
CWE-94
Status published
Products (33)
mozilla/firefox 1.5
mozilla/firefox 1.5.0.1
mozilla/firefox 1.5.0.2
mozilla/firefox 1.5.0.3
mozilla/firefox 1.5.0.4
mozilla/firefox 1.5.0.5
mozilla/firefox 1.5.0.6
mozilla/firefox 1.5.0.7
mozilla/firefox 1.5.0.8
mozilla/firefox 1.5.0.9
... and 23 more
Published Jun 01, 2007
Tracked Since Feb 18, 2026