CVE-2005-0989 - CVE Reference - Advisories

CVE Reference: CVE-2005-0989

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-0989

Description: The find_replen function in jsstr.c in the the Javascript engine for Mozilla Suite 1.7.6, Firefox 1.0.1 and 1.0.2, and Netscape 7.2 allows remote attackers to read portions of heap memory in a Javascript string via the lambda replace method.

CVE Status: Candidate

References: SUSE http://www.novell.com/linux/security/advisories/2006_04_25.html ST 1013635 1013643 SCO SAID Secunia Advisory: SA19823 Secunia Advisory: SA14821 Secunia Advisory: SA14820 REDHAT http://www.redhat.com/support/errata/RHSA-2005-383.html http://www.redhat.com/support/errata/RHSA-2005-386.html http://www.redhat.com/support/errata/RHSA-2005-601.html http://www.redhat.com/support/errata/RHSA-2005-384.html OVAL http://oval.mitre.org/oval/definitions/data/oval100025.html HP GENTOO http://www.gentoo.org/security/en/glsa/glsa-200504-18.xml CONFIRM http://www.mozilla.org/security/announce/mfsa2005-33.html BID 15495 12988

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Microsoft Windows DNS Spoofing Vulnerabilities

2.	Microsoft Access Snapshot Viewer ActiveX Control Vulnerability

3.	Microsoft Windows Explorer Saved Search Vulnerability

4.	Microsoft SQL Server and MSDE Multiple Vulnerabilities

5.	Joomla Unauthorized Access Vulnerabilities

6.	Microsoft Outlook Web Access Script Insertion Vulnerabilities

7.	ArticleBeach Script "page" File Inclusion Vulnerability

8.	Mozilla Firefox Multiple Vulnerabilities

9.	Symantec Brightmail AntiSpam Notifier Denial of Service

10.	PHP-Nuke 4ndvddb Module "id" SQL Injection Vulnerability