CVE-2017-5405 — DEPRECATED: Use of Uninitialized Resource in Mozilla Firefox
Severity
5.3MEDIUMNVD
OSV9.8
EPSS
2.4%
top 15.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJun 11
Latest updateMay 13
Description
Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4
Affected Packages10 packages
Also affects: Debian Linux 8.0, Enterprise Linux 5.0, 6.0, 7.0, 7.3, 7.4, 7.5
🔴Vulnerability Details
6GHSA▶
GHSA-f5h5-w6rr-6gwm: Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations↗2022-05-13
OSV▶
CVE-2017-5405: Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations↗2018-06-11
CVEList▶
CVE-2017-5405: Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations↗2018-06-11