CVE-2007-2869 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-2869
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-2869

Description: The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service (persistent temporary CPU consumption) via a large number of characters in a submitted form.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/34612 UBUNTU http://www.ubuntu.com/usn/usn-468-1 SUSE http://www.novell.com/linux/security/advisories/2007_36_mozilla.html ST 1018154 SLACKWARE http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.571857 SAID Secunia Advisory: SA25490 Secunia Advisory: SA25534 Secunia Advisory: SA25685 Secunia Advisory: SA25647 Secunia Advisory: SA25635 Secunia Advisory: SA25533 Secunia Advisory: SA25476 Secunia Advisory: SA25750 Secunia Advisory: SA25858 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0402.html http://www.redhat.com/support/errata/RHSA-2007-0401.html http://www.redhat.com/support/errata/RHSA-2007-0400.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:126 http://www.mandriva.com/security/advisories?name=MDKSA-2007:120 HP http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742 GENTOO http://security.gentoo.org/glsa/glsa-200706-06.xml DEBIAN http://www.debian.org/security/2007/dsa-1306 http://www.debian.org/security/2007/dsa-1308 CONFIRM http://www.mozilla.org/security/announce/2007/mfsa2007-13.html CERT http://www.us-cert.gov/cas/techalerts/TA07-151A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/470172/100/200/threaded BID 24242

Return to the previous page.