CVE-2008-0419

Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows remote attackers to steal navigation history and cause a denial of service (crash) via images in a page that uses designMode frames, which triggers memory corruption related to resize handles.

🔗 References (112)

• secalert@redhathttp://browser.netscape.com/releasenotes/
• secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-02/msg00006.html
• secalert@redhathttp://secunia.com/advisories/28754
• secalert@redhathttp://secunia.com/advisories/28758
• secalert@redhathttp://secunia.com/advisories/28766
• secalert@redhathttp://secunia.com/advisories/28808
• secalert@redhathttp://secunia.com/advisories/28815
• secalert@redhathttp://secunia.com/advisories/28818
• secalert@redhathttp://secunia.com/advisories/28839
• secalert@redhathttp://secunia.com/advisories/28864
• secalert@redhathttp://secunia.com/advisories/28865
• secalert@redhathttp://secunia.com/advisories/28877
• secalert@redhathttp://secunia.com/advisories/28879
• secalert@redhathttp://secunia.com/advisories/28924
• secalert@redhathttp://secunia.com/advisories/28939