Vulnerabilities > CVE-2008-2419 - Resource Management Errors vulnerability in Mozilla Firefox 2.0.0.14
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Mozilla Firefox 2.0.0.14 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code by triggering an error condition during certain Iframe operations between a JSframe write and a JSframe close, as demonstrated by an error in loading an empty Java applet defined by a 'src="javascript:"' sequence.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Mozilla Firefox 2.0.0.14 JSframe Heap Corruption Denial of Service Vulnerability. CVE-2008-2419. Dos exploits for multiple platform |
| id | EDB-ID:31817 |
| last seen | 2016-02-03 |
| modified | 2008-05-21 |
| published | 2008-05-21 |
| reporter | 0x000000 |
| source | https://www.exploit-db.com/download/31817/ |
| title | Mozilla Firefox 2.0.0.14 - JSframe Heap Corruption Denial of Service Vulnerability |