CVE-2008-0412

Priority
Medium
Description
The browser engine in Mozilla Firefox before 2.0.0.12, Thunderbird before
2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to cause a
denial of service (crash) and possibly trigger memory corruption via
vectors related to the (1) nsTableFrame::GetFrameAtOrBefore, (2)
nsAccessibilityService::GetAccessible, (3)
nsBindingManager::GetNestedInsertionPoint, (4)
nsXBLPrototypeBinding::AttributeChanged, (5)
nsColumnSetFrame::GetContentInsertionFrame, and (6)
nsLineLayout::TrimTrailingWhiteSpaceIn methods, and other vectors.
References
Package
Upstream:not-affected (1.1.8)
Package
Upstream:released (2.0.0.12)
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:released (2.0.0.12)
Package
Upstream:needs-triage
Package
Upstream:released (1.8.1.13)
Package
Upstream:needs-triage
More Information

Updated: 2018-06-26 04:28:33 UTC (commit 7799c934cca373482531a7b00e4dfe82302ceae5)