The native implementations of InstallTrigger and other functions in Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the wrong memory address, which may allow malicious users to cause a denial of service (application crash) and possibly execute arbitrary code by passing objects of the wrong type.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 0.9.3 |
||
mozilla firefox 0.9 |
||
mozilla mozilla 1.4 |
||
mozilla mozilla 1.5 |
||
mozilla mozilla 1.6 |
||
mozilla mozilla 1.7 |
||
mozilla firefox 0.10.1 |
||
mozilla firefox 0.8 |
||
mozilla firefox 1.0.2 |
||
mozilla mozilla 1.3 |
||
mozilla mozilla 1.7.3 |
||
mozilla mozilla 1.7.5 |
||
mozilla firefox 0.9.1 |
||
mozilla firefox 0.9.2 |
||
mozilla mozilla 1.4.1 |
||
mozilla mozilla 1.7.6 |
||
mozilla firefox 0.10 |
||
mozilla firefox 1.0 |
||
mozilla firefox 1.0.1 |
||
mozilla mozilla 1.5.1 |
||
mozilla mozilla 1.7.1 |
||
mozilla mozilla 1.7.2 |