Vulnerability Name: | CVE-2005-0255 (CCN-19522) | ||||||||||||||||||||||||||||
Assigned: | 2005-02-28 | ||||||||||||||||||||||||||||
Published: | 2005-02-28 | ||||||||||||||||||||||||||||
Updated: | 2017-10-11 | ||||||||||||||||||||||||||||
Summary: | String handling functions in Mozilla 1.7.3, Firefox 1.0, and Thunderbird before 1.0.2, such as the nsTSubstring_CharT::Replace function, do not properly check the return values of other functions that resize the string, which allows remote attackers to cause a denial of service and possibly execute arbitrary code by forcing an out-of-memory state that causes a reallocation to fail and return a pointer to a fixed address, which leads to heap corruption. | ||||||||||||||||||||||||||||
CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||||||||||||||||||||||
CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||||||||||||||||||||||
Vulnerability Type: | CWE-Other | ||||||||||||||||||||||||||||
Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||||||
References: | Source: CCN Type: BugTraq Mailing List, Tue Mar 01 2005 - 02:17:05 CST Re: iDEFENSE Security Advisory 02.28.05: Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error Source: MITRE Type: CNA CVE-2005-0255 Source: CCN Type: RHSA-2005-176 firefox security update Source: CCN Type: RHSA-2005-277 mozilla security update Source: CCN Type: RHSA-2005-337 thunderbird security update Source: SECUNIA Type: UNKNOWN 19823 Source: CCN Type: CIAC INFORMATION BULLETIN P-149 Firefox Security Update Source: CCN Type: GLSA-200503-10 Mozilla Firefox: Various vulnerabilities Source: GENTOO Type: Patch, Vendor Advisory GLSA-200503-10 Source: CCN Type: GLSA-200503-30 Mozilla Suite: Multiple vulnerabilities Source: GENTOO Type: Patch, Vendor Advisory GLSA-200503-30 Source: CCN Type: GLSA-200503-32 Mozilla Thunderbird: Multiple vulnerabilities Source: CCN Type: iDEFENSE Security Advisory 02.28.05 Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error Source: IDEFENSE Type: Patch, Vendor Advisory 20050228 Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error Source: CCN Type: Mozilla CVS Repository Web site source code via cvs Source: CCN Type: Mozilla Firefox Download Web page Download Firefox Source: CCN Type: Mozilla Suite Download Web page Mozilla Suite Source: CCN Type: MFSA 2005-18 Memory overwrite in string library Source: CONFIRM Type: Vendor Advisory http://www.mozilla.org/security/announce/mfsa2005-18.html Source: SUSE Type: Patch, Vendor Advisory SUSE-SA:2005:016 Source: SUSE Type: UNKNOWN SUSE-SA:2006:004 Source: REDHAT Type: UNKNOWN RHSA-2005:176 Source: REDHAT Type: Patch, Vendor Advisory RHSA-2005:277 Source: REDHAT Type: Patch, Vendor Advisory RHSA-2005:337 Source: BID Type: UNKNOWN 12659 Source: CCN Type: BID-12659 Mozilla Suite Multiple Remote Vulnerabilities Source: CCN Type: USN-149-3 Ubuntu 4.10 update for Firefox vulnerabilities Source: CCN Type: Bugzilla Bug 277549 Out of memory in MutatePrep is not well handled Source: XF Type: UNKNOWN mozilla-firefox-string-heap-corruption(19522) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:100040 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:9111 Source: SUSE Type: SUSE-SA:2005:016 Mozilla Firefox: remote code execution Source: SUSE Type: SUSE-SA:2006:022 MozillaThunderbird various problems | ||||||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||
BACK |