Vulnerability Details CVE-2004-1639
Mozilla Firefox before 0.10, Mozilla 5.0, and Gecko 20040913 allows remote attackers to cause a denial of service (application crash or memory consumption) via a large binary file with a .html extension.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.6%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2004-q4/0017.html
- http://marc.info/?l=bugtraq&m=109886388528179&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17839
- http://archives.neohapsis.com/archives/vulnwatch/2004-q4/0017.html
- http://marc.info/?l=bugtraq&m=109886388528179&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17839
Products affected by CVE-2004-1639
-
cpe:2.3:a:mozilla:firefox:-
-
cpe:2.3:a:mozilla:firefox:0.1
-
cpe:2.3:a:mozilla:firefox:0.10
-
cpe:2.3:a:mozilla:firefox:0.2
-
cpe:2.3:a:mozilla:firefox:0.3
-
cpe:2.3:a:mozilla:firefox:0.4
-
cpe:2.3:a:mozilla:firefox:0.5
-
cpe:2.3:a:mozilla:firefox:0.6
-
cpe:2.3:a:mozilla:firefox:0.6.1
-
cpe:2.3:a:mozilla:firefox:0.7
-
cpe:2.3:a:mozilla:firefox:0.7.1
-
cpe:2.3:a:mozilla:firefox:0.8
-
cpe:2.3:a:mozilla:firefox:0.9
-
cpe:2.3:a:mozilla:firefox:0.9.1
-
cpe:2.3:a:mozilla:firefox:0.9.2
-
cpe:2.3:a:mozilla:firefox:0.9.3
-
cpe:2.3:a:mozilla:gecko:2004-09-13
-
cpe:2.3:a:mozilla:mozilla:5.0