← back
CVE-2005-0399

CVE-2005-0399

EPSS 15.1%
Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txthttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=150877http://secunia.com/advisories/14654http://secunia.com/advisories/19823https://exchange.xforce.ibmcloud.com/vulnerabilities/19269https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100028https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11377http://www.ciac.org/ciac/bulletins/p-160.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200503-30.xmlhttp://www.kb.cert.org/vuls/id/557948http://www.mozilla.org/security/announce/mfsa2005-30.htmlhttp://www.novell.com/linux/security/advisories/2006_04_25.html