Integer overflow in the nsGenericDOMDataNode::SetTextInternal function in Mozilla Firefox 3.5.x prior to 3.5.10 and 3.6.x prior to 3.6.4, Thunderbird prior to 3.0.5, and SeaMonkey prior to 2.0.5 allows remote malicious users to execute arbitrary code via a DOM node with a long text value that triggers a heap-based buffer overflow.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
mozilla firefox 3.5.7 |
||
mozilla firefox 3.5.9 |
||
mozilla firefox 3.5.4 |
||
mozilla firefox 3.5.5 |
||
mozilla firefox 3.5.6 |
||
mozilla firefox 3.5 |
||
mozilla firefox 3.5.1 |
||
mozilla firefox 3.5.2 |
||
mozilla firefox 3.5.3 |
||
mozilla seamonkey 2.0 |
||
mozilla seamonkey 1.1.18 |
||
mozilla seamonkey 1.1.17 |
||
mozilla seamonkey 1.1.9 |
||
mozilla seamonkey 1.1.8 |
||
mozilla seamonkey 1.1.1 |
||
mozilla seamonkey 1.1 |
||
mozilla seamonkey 1.0.5 |
||
mozilla seamonkey 1.0.4 |
||
mozilla seamonkey 2.0.1 |
||
mozilla seamonkey 1.1.19 |
||
mozilla seamonkey 1.1.11 |
||
mozilla seamonkey 1.1.10 |
||
mozilla seamonkey 1.1.3 |
||
mozilla seamonkey 1.1.2 |
||
mozilla seamonkey 1.0.7 |
||
mozilla seamonkey 1.0.6 |
||
mozilla seamonkey 1.0 |
||
mozilla seamonkey |
||
mozilla seamonkey 1.1.16 |
||
mozilla seamonkey 1.1.15 |
||
mozilla seamonkey 1.1.7 |
||
mozilla seamonkey 1.1.6 |
||
mozilla seamonkey 1.0.3 |
||
mozilla seamonkey 1.0.2 |
||
mozilla seamonkey 1.0.1 |
||
mozilla seamonkey 2.0.3 |
||
mozilla seamonkey 2.0.2 |
||
mozilla seamonkey 1.1.14 |
||
mozilla seamonkey 1.1.13 |
||
mozilla seamonkey 1.1.12 |
||
mozilla seamonkey 1.1.5 |
||
mozilla seamonkey 1.1.4 |
||
mozilla seamonkey 1.0.9 |
||
mozilla seamonkey 1.0.8 |
||
mozilla firefox 3.6.2 |
||
mozilla firefox 3.6.3 |
||
mozilla firefox 3.6 |
||
mozilla thunderbird 3.0 |
||
mozilla thunderbird 2.0.0.19 |
||
mozilla thunderbird 2.0.0.6 |
||
mozilla thunderbird 2.0.0.5 |
||
mozilla thunderbird 2.0.0.4 |
||
mozilla thunderbird 1.5.0.8 |
||
mozilla thunderbird 1.5.0.7 |
||
mozilla thunderbird 1.0.6 |
||
mozilla thunderbird 1.0.5 |
||
mozilla thunderbird 0.4 |
||
mozilla thunderbird 0.3 |
||
mozilla thunderbird 3.0.2 |
||
mozilla thunderbird 3.0.1 |
||
mozilla thunderbird 2.0.0.12 |
||
mozilla thunderbird 2.0.0.9 |
||
mozilla thunderbird 1.5.0.10 |
||
mozilla thunderbird 1.5.0.9 |
||
mozilla thunderbird 1.0.8 |
||
mozilla thunderbird 1.0.7 |
||
mozilla thunderbird 0.7 |
||
mozilla thunderbird 0.6 |
||
mozilla thunderbird 0.5 |
||
mozilla thunderbird 2.0.0.18 |
||
mozilla thunderbird 2.0.0.17 |
||
mozilla thunderbird 2.0.0.0 |
||
mozilla thunderbird 1.5.0.14 |
||
mozilla thunderbird 1.5.0.5 |
||
mozilla thunderbird 1.5.0.4 |
||
mozilla thunderbird 1.0.2 |
||
mozilla thunderbird 1.0 |
||
mozilla thunderbird 0.2 |
||
mozilla thunderbird 0.1 |
||
mozilla thunderbird |
||
mozilla thunderbird 3.0.3 |
||
mozilla thunderbird 2.0.0.16 |
||
mozilla thunderbird 2.0.0.14 |
||
mozilla thunderbird 1.5.0.13 |
||
mozilla thunderbird 1.5.0.12 |
||
mozilla thunderbird 1.5.0.2 |
||
mozilla thunderbird 1.5 |
||
mozilla thunderbird 0.9 |
||
mozilla thunderbird 0.8 |
Vulmon