| Revision Date: | 2007-05-09 | Version: | 5 |
| Title: | Mozilla InstallTrigger Instance Validation Vulnerability |
| Description: | The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the wrong memory address, which may allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code by passing objects of the wrong type. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2005-1159
|
| Platform(s): | Microsoft Windows 2000
Microsoft Windows NT
Microsoft Windows Server 2003
Microsoft Windows XP
| Product(s): | mozilla
Mozilla Firefox
|
| Definition Synopsis |
| Mozilla Firefox version 1.0.2 or earlier is installed Firefox version 1.0.2 or earlier is installed
AND Mozilla Firefox version 1.0.2 or earlier is installed
OR Mozilla Suite version 1.7.6 or earlier is installed
Mozilla Suite version 1.7.6 or earlier is installed
AND Mozilla Suite version 1.7.6 or earlier is installed
|