← back
CVE-2005-2414

CVE-2005-2414

EPSS 3.4%
Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of service (application crash) via a large HTML file that loads a DOM call from within nested DIV tags, which causes part of the currently rendering page and referenced objects to be deleted.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/43831unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=112199282029269&w=2http://securitytracker.com/id?1014548http://securitytracker.com/id?1014550https://exchange.xforce.ibmcloud.com/vulnerabilities/21472http://www.gulftech.org/?node=research&article_id=00091-07212005