Vulnerability Name:

CVE-2005-4720 (CCN-22531)

Assigned:2005-10-06
Published:2005-10-06
Updated:2008-09-05
Summary:Mozilla Firefox 1.0.7 and earlier on Linux allows remote attackers to cause a denial of service (client crash) via an IFRAME element with a large value of the WIDTH attribute, which triggers a problem related to representation of floating-point numbers, leading to an infinite loop of widget resizes and a corresponding large number of function calls on the stack.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2005-4720

Source: CCN
Type: SA17071
Mozilla Firefox Iframe Size Denial of Service Weakness

Source: SECUNIA
Type: Patch, Vendor Advisory
17071

Source: MISC
Type: Exploit, Vendor Advisory
http://security-protocols.com/modules.php?name=News&file=article&sid=2978

Source: CCN
Type: SECTRACK ID: 1015011
Mozilla Firefox Buffer Overflow in Processing IFRAME Widths May Let Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: Exploit
1015011

Source: CCN
Type: Mozilla Web site
Firefox - Rediscover the web

Source: CCN
Type: OSVDB ID: 19880
Mozilla Firefox IFRAME Width Overflow

Source: MISC
Type: Exploit, Vendor Advisory
http://www.security-protocols.com/advisory/sp-x19-advisory.txt

Source: BID
Type: Exploit
15015

Source: CCN
Type: BID-15015
Mozilla Firefox IFRAME Handling Denial Of Service Vulnerability

Source: CCN
Type: Mozilla Bugzilla Bug 303433
Firefox 1.0.6 segfaults on this malformed .html page

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.mozilla.org/show_bug.cgi?id=303433

Source: XF
Type: UNKNOWN
mozilla-firefox-iframe-tag-dos(22531)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mozilla:firefox:1.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:1.0.7:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:mozilla:firefox:1.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:1.0.7:*:*:*:*:*:*:*
  • AND
  • cpe:/o:fedoraproject:fedora_core:4:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    mozilla firefox 1.0.6
    mozilla firefox 1.0.7
    mozilla firefox 1.0.6
    mozilla firefox 1.0.7
    fedoraproject fedora core 4