Vulnerability Details CVE-2007-2671
Mozilla Firefox 2.0.0.3 allows remote attackers to cause a denial of service (application crash) via a long hostname in an HREF attribute in an A element, which triggers an out-of-bounds memory access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.068
EPSS Ranking 91.1%
CVSS Severity
CVSS v2 Score 7.1
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/062773.html
- http://osvdb.org/35700
- http://securityreason.com/securityalert/2704
- http://www.critical.lt/research/opera_die_happy.html
- http://www.securityfocus.com/bid/23747
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33982
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/062773.html
- http://osvdb.org/35700
- http://securityreason.com/securityalert/2704
- http://www.critical.lt/research/opera_die_happy.html
- http://www.securityfocus.com/bid/23747
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33982