CVE-2007-2671
published 2007-05-14CVE-2007-2671: Mozilla Firefox 2.0.0.3 allows remote attackers to cause a denial of service (application crash) via a long hostname in an HREF attribute in an A element…
PriorityP422high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
3.22%
86.6th percentile
Mozilla Firefox 2.0.0.3 allows remote attackers to cause a denial of service (application crash) via a long hostname in an HREF attribute in an A element, which triggers an out-of-bounds memory access.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft PowerPoint 2007 - Crash (PoC)
exploitdb·2013-07-01
CVE-2014-2671 Microsoft PowerPoint 2007 - Crash (PoC)
Microsoft PowerPoint 2007 - Crash (PoC)
---
# Title : Microsoft Office PowerPoint 2007 Crash PoC
# Date: 2013-01-12
# Software Link: http://office.microsoft.com/
# Author: Asesino04
# Tested on: Windows XP SP2
# Special Thanks To : Ness Oum El Bouaghi
# Bug Description:
when you insert a sound to Microsoft office powerpoint 2007 ;the software will get crashed
it tested on office 2007 ,all the versions may be affected too
# Credit: This Bug was founded by Asesino04 "The Black Devils"
# Proof Of Concept
https://fbcdn-sphotos-g-a.akamaihd.net/hphotos-ak-prn1/601368_541967942509686_881180451_n.jpg
/-->
EAX FFFFFFFF
ECX 00000000
EDX 00000000
EBX 0003DAD8
ESP 0013BC5C
EBP 0013BCF0
ESI FFFFFFFF
EDI 00199FF2
EIP 0460E650 quartz.0460E650
C 0 ES 0023 32bit 0(FFFFFFFF)
P 1 CS 001B 32bit 0(
Exploit-DB
Mozilla Firefox 2.0.0.3 - Href Denial of Service
exploitdb·2007-05-01
CVE-2007-2671 Mozilla Firefox 2.0.0.3 - Href Denial of Service
Mozilla Firefox 2.0.0.3 - Href Denial of Service
---
source: https://www.securityfocus.com/bid/23747/info
Firefox is prone to a remote denial-of-service vulnerability.
An attacker may exploit this issue by enticing victims into opening a maliciously crafted HTML document.
Successful exploits can allow attackers to crash the affected browser, resulting in denial-of-service conditions.
Firefox 2.0.0.3 is prone to this issue; other versions may also be affected.
boom
No writeups or analysis indexed.
http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/062773.htmlhttp://osvdb.org/35700http://securityreason.com/securityalert/2704http://www.critical.lt/research/opera_die_happy.htmlhttp://www.securityfocus.com/bid/23747https://exchange.xforce.ibmcloud.com/vulnerabilities/33982http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/062773.htmlhttp://osvdb.org/35700http://securityreason.com/securityalert/2704http://www.critical.lt/research/opera_die_happy.htmlhttp://www.securityfocus.com/bid/23747https://exchange.xforce.ibmcloud.com/vulnerabilities/33982
2007-05-14
Published