CVE-2008-2014

Firefox 3.0 beta 5 - Denial of Service via Infinite document.write Loop

Title source: llm
STIX 2.1

Description

Mozilla Firefox 3.0 beta 5 allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls document.write in an infinite loop.

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/491354/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3835
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/491355/100/0/threaded
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/491197/100/0/threaded
Various Sources x_refsource_misc
http://es.geocities.com/jplopezy/pruebamozilla.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/491196/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42154

Scores

EPSS 0.0141
EPSS Percentile 69.8%

Details

CWE
CWE-399
Status published
Products (1)
mozilla/firefox 3.0 beta5
Published Apr 30, 2008
Tracked Since Feb 18, 2026