nsFrameManager in Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a file input element while it is still being initialized, then using the blur method to access uninitialized memory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |
||
mozilla seamonkey |
||
mozilla thunderbird |
||
debian debian linux 4.0 |
||
canonical ubuntu linux 6.06 |
||
canonical ubuntu linux 7.10 |
||
canonical ubuntu linux 8.04 |
||
canonical ubuntu linux 8.10 |
||
fedoraproject fedora 9 |
||
fedoraproject fedora 8 |
||
opensuse opensuse 10.2 |
||
suse linux enterprise server 9 |
||
novell linux desktop 9 |
||
opensuse opensuse 11.0 |
||
opensuse opensuse 10.3 |
||
suse linux enterprise software development kit 10 |
||
suse linux enterprise debuginfo 10 |
||
suse linux enterprise server 10 |
||
suse linux enterprise desktop 10 |
||
novell open enterprise server - |