CVE-2005-0399
published 2005-05-02CVE-2005-0399: Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use…
PriorityP333medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
15.12%
96.3th percentile
Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.
Affected
34 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | mozilla | — | — |
| mozilla | thunderbird | — | — |
| mozilla | thunderbird | — | — |
| mozilla | thunderbird | — | — |
| mozilla | thunderbird | — | — |
| mozilla | thunderbird | — | — |
CVSS provenance
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
vendor_redhat5.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Ubuntu 4.10 update for Firefox vulnerabilities
vendor_ubuntu·2005-07-28
CVE-2004-1156 Ubuntu 4.10 update for Firefox vulnerabilities
Title: Ubuntu 4.10 update for Firefox vulnerabilities
Summary: Ubuntu 4.10 update for Firefox vulnerabilities
USN-149-1 fixed some vulnerabilities in the Ubuntu 5.04 (Hoary
Hedgehog) version of Firefox. The version shipped with Ubuntu 4.10
(Warty Warthog) is also vulnerable to these flaws, so it needs to be
upgraded as well. Please see
http://www.ubuntulinux.org/support/documentation/usn/usn-149-1
for the original advisory.
This update also fixes several older vulnerabilities; Some of them
could be exploited to execute arbitrary code with full user privileges
if the user visited a malicious web site. (MFSA-2005-01 to
MFSA-2005-44; please see the following web site for details:
http://www.mozilla.org/projects/security/known-vulnerabilities.html)
Instructions: In general, a standard sy
Red Hat
security flaw
vendor_redhat·2005-03-23·CVSS 5.1
CVE-2005-0399 [MEDIUM] security flaw
security flaw
Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.
Red Hat
tar archive path traversal issue
vendor_redhat·2003-07-21·CVSS 5.0
CVE-2005-1918 [MEDIUM] tar archive path traversal issue
tar archive path traversal issue
The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat Enterprise Linux 3 and 2.1 uses an "incorrect optimization" that allows user-assisted attackers to overwrite arbitrary files via a crafted tar file, probably involving "/../" sequences with a leading "/".
GHSA
GHSA-x75c-2774-mpv3: Heap-based buffer overflow in GIF2
ghsa_unreviewed·2022-05-03
CVE-2005-0399 [MEDIUM] GHSA-x75c-2774-mpv3: Heap-based buffer overflow in GIF2
Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2005-0399 security flaw
bugzilla·2018-08-16·CVSS 5.1
CVE-2005-0399 [MEDIUM] CVE-2005-0399 security flaw
CVE-2005-0399 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.
Bugzilla
Multiple tar issues (CVE-2005-1918, CVE-2006-0300)
bugzilla·2006-03-02·CVSS 5.0
CVE-2005-1918 [MEDIUM] Multiple tar issues (CVE-2005-1918, CVE-2006-0300)
Multiple tar issues (CVE-2005-1918, CVE-2006-0300)
There are two separate issues that affect different subsets of our products.
I. RHL 7.3, RHL 9, FC1 & FC2: tar archive path traversal issue
CVE-2005-1918: "The original patch for a GNU tar directory traversal
vulnerability (CVE-2002-0399) in Red Hat Enterprise Linux 3 and 2.1 uses
an 'incorrect optimization' that allows user-complicit attackers to over-
write arbitrary files via a crafted tar file, probably involving '/../'
sequences with a leading '/'."
This vulnerability appears to only affect tar-1.13.25 releases, which
these four distros use.
Red Hat issued RHSA-2006:0195-01 for RHEL 2.1 and RHEL 3:
"In 2002, a path traversal flaw was found in the way GNU tar extracted
archives. A malicious user could create a tar archive that cou
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txthttp://secunia.com/advisories/14654http://secunia.com/advisories/19823http://www.ciac.org/ciac/bulletins/p-160.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200503-30.xmlhttp://www.kb.cert.org/vuls/id/557948http://www.mozilla.org/security/announce/mfsa2005-30.htmlhttp://www.novell.com/linux/security/advisories/2006_04_25.htmlhttp://www.redhat.com/support/errata/RHSA-2005-323.htmlhttp://www.redhat.com/support/errata/RHSA-2005-335.htmlhttp://www.redhat.com/support/errata/RHSA-2005-336.htmlhttp://www.redhat.com/support/errata/RHSA-2005-337.htmlhttp://www.securityfocus.com/bid/12881http://www.securityfocus.com/bid/15495http://www.vupen.com/english/advisories/2005/0296http://xforce.iss.net/xforce/alerts/id/191https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=150877https://exchange.xforce.ibmcloud.com/vulnerabilities/19269https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100028https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11377ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txthttp://secunia.com/advisories/14654http://secunia.com/advisories/19823http://www.ciac.org/ciac/bulletins/p-160.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200503-30.xmlhttp://www.kb.cert.org/vuls/id/557948http://www.mozilla.org/security/announce/mfsa2005-30.htmlhttp://www.novell.com/linux/security/advisories/2006_04_25.htmlhttp://www.redhat.com/support/errata/RHSA-2005-323.htmlhttp://www.redhat.com/support/errata/RHSA-2005-335.htmlhttp://www.redhat.com/support/errata/RHSA-2005-336.htmlhttp://www.redhat.com/support/errata/RHSA-2005-337.htmlhttp://www.securityfocus.com/bid/12881http://www.securityfocus.com/bid/15495http://www.vupen.com/english/advisories/2005/0296http://xforce.iss.net/xforce/alerts/id/191https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=150877https://exchange.xforce.ibmcloud.com/vulnerabilities/19269https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100028https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11377
2005-05-02
Published