Vulnerabilities > CVE-2004-0478 - Resource Management Errors vulnerability in Mozilla

CVSS 2.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

high complexity

mozilla

CWE-399

NVD

Published: 2004-07-07

Updated: 2017-07-11

Summary

Unknown versions of Mozilla allow remote attackers to cause a denial of service (high CPU/RAM consumption) using Javascript with an infinite loop that continues to add input to a form, possibly as the result of inserting control characters, as demonstrated using an embedded ctrl-U.

Vulnerable Configurations

Part	Description	Count
Application	Mozilla Mozilla Mozilla *	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://bugzilla.mozilla.org/show_bug.cgi?id=243540
http://lists.immunitysec.com/pipermail/dailydave/2004-May/000587.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/16225