Denial of Service : Mozilla Firefox 'GIF' File DoS Vulnerability (Nov 2009)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.900895

Categoría: Denial of Service

Título: Mozilla Firefox 'GIF' File DoS Vulnerability (Nov 2009) - Linux

Resumen: Firefox browser is prone to Denial of Service vulnerabilities.

Descripción: Summary:
Firefox browser is prone to Denial of Service vulnerabilities.

Vulnerability Insight:
A NULL pointer dereference error in 'nsGIFDecoder2::GifWrite' function in
'decoders/gif/nsGIFDecoder2.cpp' in libpr0n, which can be exploited to cause
application crash via an animated 'GIF' file with a large image size.

Vulnerability Impact:
Successful exploitation could allows remote attacker to cause a vulnerable
application to crash.

Affected Software/OS:
Mozilla Firefox version prior to 3.5.5 on Linux.

Solution:
Upgrade to Firefox version 3.5.5 or later.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-3978
http://www.h-online.com/open/news/item/Mozilla-fixes-critical-bugs-with-Firefox-3-5-5-852070.html
http://www.mozilla.com/en-US/firefox/3.5.5/releasenotes/

Copyright Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.900895
Categoría:	Denial of Service
Título:	Mozilla Firefox 'GIF' File DoS Vulnerability (Nov 2009) - Linux
Resumen:	Firefox browser is prone to Denial of Service vulnerabilities.
Descripción:	Summary: Firefox browser is prone to Denial of Service vulnerabilities. Vulnerability Insight: A NULL pointer dereference error in 'nsGIFDecoder2::GifWrite' function in 'decoders/gif/nsGIFDecoder2.cpp' in libpr0n, which can be exploited to cause application crash via an animated 'GIF' file with a large image size. Vulnerability Impact: Successful exploitation could allows remote attacker to cause a vulnerable application to crash. Affected Software/OS: Mozilla Firefox version prior to 3.5.5 on Linux. Solution: Upgrade to Firefox version 3.5.5 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3978 http://www.h-online.com/open/news/item/Mozilla-fixes-critical-bugs-with-Firefox-3-5-5-852070.html http://www.mozilla.com/en-US/firefox/3.5.5/releasenotes/
Copyright	Copyright (C) 2009 Greenbone AG