CVE-2008-4324
published 2008-09-29CVE-2008-4324: The user interface event dispatcher in Mozilla Firefox 3.0.3 on Windows XP SP2 allows remote attackers to cause a denial of service (NULL pointer dereference…
PriorityP423medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
8.92%
94.6th percentile
The user interface event dispatcher in Mozilla Firefox 3.0.3 on Windows XP SP2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a series of keypress, click, onkeydown, onkeyup, onmousedown, and onmouseup events. NOTE: it was later reported that Firefox 3.0.2 on Mac OS X 10.5 is also affected.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
http://evilfingers.com/advisory/Firefox_User_Interface_Null_Pointer_Dereference_Dispatcher_Crash_n_Remote_DoS.phphttp://secunia.com/advisories/32040http://securityreason.com/securityalert/4321http://www.secniche.org/moz303.htmlhttp://www.secniche.org/moz303/index.htmlhttp://www.securityfocus.com/archive/1/496807/100/0/threadedhttp://www.securityfocus.com/archive/1/496846/100/0/threadedhttp://www.securityfocus.com/bid/31476https://www.exploit-db.com/exploits/6614http://evilfingers.com/advisory/Firefox_User_Interface_Null_Pointer_Dereference_Dispatcher_Crash_n_Remote_DoS.phphttp://secunia.com/advisories/32040http://securityreason.com/securityalert/4321http://www.secniche.org/moz303.htmlhttp://www.secniche.org/moz303/index.htmlhttp://www.securityfocus.com/archive/1/496807/100/0/threadedhttp://www.securityfocus.com/archive/1/496846/100/0/threadedhttp://www.securityfocus.com/bid/31476https://www.exploit-db.com/exploits/6614
2008-09-29
Published