CVE-2007-5340

CVSS v2.0 4.3 (Medium)

EPSS 51.01 % (98^th)

Affected Products 3

Advisories 10

Multiple vulnerabilities in the Javascript engine in Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allow remote attackers to cause a denial of service (crash) via crafted HTML that triggers memory corruption.

Weaknesses

CWE-20: Improper Input Validation

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2007-10-21 19:17:00
(17 years ago)
Updated Date: 2023-02-13 02:18:25
(19 months ago)

Affected Products

Mozilla

Firefox
Seamonkey
Thunderbird

Configuration #1

	CPE23	Up To
Mozilla Firefox 2.0.0.7 and prior versions	cpe:2.3:a:mozilla:firefox	<= 2.0.0.7
Mozilla Seamonkey 1.1.4 and prior versions	cpe:2.3:a:mozilla:seamonkey	<= 1.1.4
Mozilla Thunderbird 2.0.0.6 and prior versions	cpe:2.3:a:mozilla:thunderbird	<= 2.0.0.6