CVE-2007-0777

The JavaScript engine in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain vectors that trigger memory corruption.

🔗 References (122)

• secalert@redhatftp://patches.sgi.com/support/free/security/advisories/20070202-01-P.asc
• secalert@redhatftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.asc
• secalert@redhathttp://fedoranews.org/cms/node/2713
• secalert@redhathttp://fedoranews.org/cms/node/2728
• secalert@redhathttp://fedoranews.org/cms/node/2747
• secalert@redhathttp://fedoranews.org/cms/node/2749
• secalert@redhathttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
• secalert@redhathttp://lists.suse.com/archive/suse-security-announce/2007-Mar/0001.html
• secalert@redhathttp://rhn.redhat.com/errata/RHSA-2007-0077.html
• secalert@redhathttp://secunia.com/advisories/24205
• secalert@redhathttp://secunia.com/advisories/24238
• secalert@redhathttp://secunia.com/advisories/24252
• secalert@redhathttp://secunia.com/advisories/24287
• secalert@redhathttp://secunia.com/advisories/24290
• secalert@redhathttp://secunia.com/advisories/24293