Vulnerabilities > CVE-2008-2786 - Unspecified vulnerability in Mozilla Firefox 2.0/3.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer overflow in Firefox 3.0 and 2.0.x has unknown impact and attack vectors. NOTE: due to lack of details as of 20080619, it is not clear whether this is the same issue as CVE-2008-2785. A CVE identifier has been assigned for tracking purposes.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 29794 CVE(CAN) ID: CVE-2008-2786 Firefox是一款流行的开放源码WEB浏览器。 远程攻击者可以利用最新版的Firefox 3处理恶意网页内容时的缓冲区溢出漏洞导致在浏览器会话中执行任意代码。 Mozilla Firefox 3.0 Mozilla ------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: <a href=http://www.mozilla.org/ target=_blank>http://www.mozilla.org/</a> |
| id | SSV:3505 |
| last seen | 2017-11-19 |
| modified | 2008-07-01 |
| published | 2008-07-01 |
| reporter | Root |
| title | Mozilla Firefox 3远程命令执行漏洞 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-June/062832.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-June/062832.html
- http://www.securityfocus.com/bid/29794
- http://www.securityfocus.com/bid/29794
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43317
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43317