CVE-2008-5715

EUVD-2008-5686
Mozilla Firefox 3.0.5 on Windows Vista allows remote attackers to cause a denial of service (application crash) via JavaScript code with a long string value for the hash property (aka location.hash). NOTE: it was later reported that earlier versions are also affected, and that the impact is CPU consumption and application hang in unspecified circumstances perhaps involving other platforms.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 92%
Affected Products (NVD)
VendorProductVersion
mozillafirefox
3.0.5
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firefox
dapper
ignored
gutsy
ignored
hardy
ignored
intrepid
dne
firefox-3.0
dapper
dne
gutsy
ignored
hardy
ignored
intrepid
ignored
iceape
dapper
dne
gutsy
ignored
hardy
dne
intrepid
dne
iceweasel
dapper
dne
gutsy
dne
hardy
dne
intrepid
dne
seamonkey
dapper
dne
gutsy
dne
hardy
ignored
intrepid
ignored
xulrunner
dapper
dne
gutsy
ignored
hardy
ignored
intrepid
ignored
xulrunner-1.9
dapper
dne
gutsy
ignored
hardy
ignored
intrepid
ignored
Common Weakness Enumeration
References
http://osvdb.org/51032
http://securityreason.com/securityalert/4807
http://websecurity.com.ua/3424/
http://www.securityfocus.com/archive/1/506006/100/0/threaded
http://www.securityfocus.com/bid/32988
https://exchange.xforce.ibmcloud.com/vulnerabilities/47572
https://www.exploit-db.com/exploits/7554
http://osvdb.org/51032
http://securityreason.com/securityalert/4807
http://websecurity.com.ua/3424/
http://www.securityfocus.com/archive/1/506006/100/0/threaded
http://www.securityfocus.com/bid/32988
https://exchange.xforce.ibmcloud.com/vulnerabilities/47572
https://www.exploit-db.com/exploits/7554