CVE-2008-4061 — Out-of-bounds Write in Mozilla Firefox

CWE-1899 documents6 sources

Severity

10.0CRITICALNVD

EPSS

3.9%

top 11.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Seamonkey Mozilla Thunderbird +2 more

Timeline

PublishedSep 24

Latest updateMay 2

Description

Integer overflow in the MathML component in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via an mtd element with a large integer value in the rowspan attribute, related to the layout engine.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/firefox3.0 — 3.0.2+1

▶NVDmozilla/seamonkey< 1.1.12

▶NVDmozilla/thunderbird< 2.0.0.17

Also affects: Debian Linux 4.0, Ubuntu Linux 6.06, 7.04, 7.10, 8.04

Patches

Patch: bugzilla.mozilla.org ↗Patch: bugzilla.mozilla.org ↗

🔴Vulnerability Details

GHSA

GHSA-m8rr-82xh-5wmh: Integer overflow in the MathML component in Mozilla Firefox before 2↗2022-05-02

▶

CVEList

CVE-2008-4061: Integer overflow in the MathML component in Mozilla Firefox before 2↗2008-09-24

▶

📋Vendor Advisories

Ubuntu

Thunderbird vulnerabilities↗2008-09-26

▶

Ubuntu

Firefox and xulrunner regression↗2008-09-25

▶

Ubuntu

Firefox vulnerabilities↗2008-09-24

▶

Ubuntu

Firefox and xulrunner vulnerabilities↗2008-09-24

▶

Red Hat

Mozilla layout engine crash↗2008-09-23

▶

💬Community

Bugzilla

CVE-2008-4061 Mozilla layout engine crash↗2008-09-22

▶