Vulnerability Details CVE-2005-2414
Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of service (application crash) via a large HTML file that loads a DOM call from within nested DIV tags, which causes part of the currently rendering page and referenced objects to be deleted.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.05
EPSS Ranking 89.2%
CVSS Severity
CVSS v2 Score 2.6
References
- http://marc.info/?l=bugtraq&m=112199282029269&w=2
- http://securitytracker.com/id?1014548
- http://securitytracker.com/id?1014550
- http://www.gulftech.org/?node=research&article_id=00091-07212005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21472
- http://marc.info/?l=bugtraq&m=112199282029269&w=2
- http://securitytracker.com/id?1014548
- http://securitytracker.com/id?1014550
- http://www.gulftech.org/?node=research&article_id=00091-07212005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21472