Vulnerabilities > CVE-2004-0478 - Resource Management Errors vulnerability in Mozilla
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Unknown versions of Mozilla allow remote attackers to cause a denial of service (high CPU/RAM consumption) using Javascript with an infinite loop that continues to add input to a form, possibly as the result of inserting control characters, as demonstrated using an embedded ctrl-U.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
References
- http://bugzilla.mozilla.org/show_bug.cgi?id=243540
- http://bugzilla.mozilla.org/show_bug.cgi?id=243540
- http://lists.immunitysec.com/pipermail/dailydave/2004-May/000587.html
- http://lists.immunitysec.com/pipermail/dailydave/2004-May/000587.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16225
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16225