cbcvebase.
CVE-2005-2414
published 2005-08-03

CVE-2005-2414: Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of…

PriorityP411low2.6CVSS 2.0
AVNACHAuNCNINAP
EXPLOIT
EPSS
3.39%
87.3th percentile
Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of service (application crash) via a large HTML file that loads a DOM call from within nested DIV tags, which causes part of the currently rendering page and referenced objects to be deleted.

Affected

1 ranges
VendorProductVersion rangeFixed in
debianfirefox< firefox 1.5.dfsg-1 (sid)firefox 1.5.dfsg-1 (sid)

CVSS provenance

nvdv2.02.6LOWAV:N/AC:H/Au:N/C:N/I:N/A:P
vendor_debian2.6LOW
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.