Vulnerability Name:

CVE-2002-1091 (CCN-10058)

Assigned:2002-09-06
Published:2002-09-06
Updated:2016-10-18
Summary:Netscape 6.2.3 and earlier, and Mozilla 1.0.1, allow remote attackers to corrupt heap memory and execute arbitrary code via a GIF image with a zero width.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Fri Sep 06 2002 - 01:47:51 CDT
zero-width gif: exploit PoC for NS6.2.3 (fixed in 7.0) [Was: GIFs Good, Flash Executable Bad]

Source: CCN
Type: Mozilla Web site
Bugzilla Bug 157989 Possible heap corruption with 0-width GIF

Source: CONFIRM
Type: UNKNOWN
http://bugzilla.mozilla.org/show_bug.cgi?id=157989

Source: CCN
Type: Netscape Web site
Netscape 7.0

Source: MISC
Type: UNKNOWN
http://crash.ihug.co.nz/~Sneuro/zerogif/

Source: MITRE
Type: CNA
CVE-2002-1091

Source: BUGTRAQ
Type: UNKNOWN
20020906 zero-width gif: exploit PoC for NS6.2.3 (fixed in 7.0) [Was: GIFs

Source: CCN
Type: RHSA-2002-192
Updated Mozilla packages fix security vulnerabilities

Source: CCN
Type: RHSA-2003-046
mozilla security update

Source: XF
Type: Vendor Advisory
netscape-zero-gif-bo(10058)

Source: CCN
Type: Conectiva Linux Security Announcement CLSA-2003:568
mozilla -- several vulnerabilities

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2002:075

Source: REDHAT
Type: Patch, Vendor Advisory
RHSA-2002:192

Source: REDHAT
Type: UNKNOWN
RHSA-2003:046

Source: BID
Type: Exploit, Patch, Vendor Advisory
5665

Source: CCN
Type: BID-5665
Multiple Browser Zero Width GIF Image Memory Corruption Vulnerability

Source: XF
Type: UNKNOWN
netscape-zero-gif-bo(10058)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mozilla:mozilla:0.9.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:mozilla:0.9.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:mozilla:0.9.7:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:mozilla:0.9.8:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:mozilla:0.9.9:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:mozilla:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:netscape:navigator:6.2:*:*:*:*:*:*:*
  • OR cpe:/a:netscape:navigator:6.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:netscape:navigator:6.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:netscape:navigator:6.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:opera_software:opera_web_browser:5.12:*:*:*:*:*:*:*
  • OR cpe:/a:opera_software:opera_web_browser:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:opera_software:opera_web_browser:6.0.1:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:netscape:navigator:6.2.3:*:*:*:*:*:*:*
  • AND
  • cpe:/o:redhat:linux:7:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.2:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:mozilla:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.2:*:ppc:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    mozilla mozilla 0.9.5
    mozilla mozilla 0.9.6
    mozilla mozilla 0.9.7
    mozilla mozilla 0.9.8
    mozilla mozilla 0.9.9
    mozilla mozilla 1.0
    netscape navigator 6.2
    netscape navigator 6.2.1
    netscape navigator 6.2.2
    netscape navigator 6.2.3
    opera_software opera web browser 5.12
    opera_software opera web browser 6.0
    opera_software opera web browser 6.0.1
    netscape navigator 6.2.3
    redhat linux 7
    conectiva linux 6.0
    redhat linux 7.1
    conectiva linux 7.0
    redhat linux 7.2
    mandrakesoft mandrake linux 8.2
    conectiva linux 8.0
    redhat linux 7.3
    mozilla mozilla 1.0.1
    redhat linux 8.0
    redhat enterprise linux 2.1
    mandrakesoft mandrake linux 8.2