Vulnerabilities > CVE-2008-2419 - Resource Management Errors vulnerability in Mozilla Firefox 2.0.0.14
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Mozilla Firefox 2.0.0.14 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code by triggering an error condition during certain Iframe operations between a JSframe write and a JSframe close, as demonstrated by an error in loading an empty Java applet defined by a 'src="javascript:"' sequence.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Mozilla Firefox 2.0.0.14 JSframe Heap Corruption Denial of Service Vulnerability. CVE-2008-2419. Dos exploits for multiple platform |
| id | EDB-ID:31817 |
| last seen | 2016-02-03 |
| modified | 2008-05-21 |
| published | 2008-05-21 |
| reporter | 0x000000 |
| source | https://www.exploit-db.com/download/31817/ |
| title | Mozilla Firefox 2.0.0.14 - JSframe Heap Corruption Denial of Service Vulnerability |