Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-2671Mozilla Firefox vulnerability

4 documents3 sources
Severity
7.1HIGHNVD
EPSS
6.8%
top 8.67%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Mozilla Firefox
Timeline
PublishedMay 14
Latest updateMay 1

Description

Mozilla Firefox 2.0.0.3 allows remote attackers to cause a denial of service (application crash) via a long hostname in an HREF attribute in an A element, which triggers an out-of-bounds memory access.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

NVDmozilla/firefox2.0.0.3

🔴Vulnerability Details

1
GHSA
GHSA-4fph-fwq5-pwx5: Mozilla Firefox 22022-05-01

💥Exploits & PoCs

2
Exploit-DB
Microsoft PowerPoint 2007 - Crash (PoC)2013-07-01
Exploit-DB
Mozilla Firefox 2.0.0.3 - Href Denial of Service2007-05-01