CVE-2008-5715

Mozilla Firefox 3.0.5 on Windows Vista allows remote attackers to cause a denial of service (application crash) via JavaScript code with a long string value for the hash property (aka location.hash). NOTE: it was later reported that earlier versions are also affected, and that the impact is CPU consumption and application hang in unspecified circumstances perhaps involving other platforms.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
mozillafirefox
3.0.5
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firefox
intrepid
dne
hardy
ignored
gutsy
ignored
dapper
ignored
firefox-3.0
intrepid
ignored
hardy
ignored
gutsy
ignored
dapper
dne
iceape
intrepid
dne
hardy
dne
gutsy
ignored
dapper
dne
iceweasel
intrepid
dne
hardy
dne
gutsy
dne
dapper
dne
seamonkey
intrepid
ignored
hardy
ignored
gutsy
dne
dapper
dne
xulrunner
intrepid
ignored
hardy
ignored
gutsy
ignored
dapper
dne
xulrunner-1.9
intrepid
ignored
hardy
ignored
gutsy
ignored
dapper
dne
Common Weakness Enumeration
References
http://osvdb.org/51032
http://securityreason.com/securityalert/4807
http://websecurity.com.ua/3424/
http://www.securityfocus.com/archive/1/506006/100/0/threaded
http://www.securityfocus.com/bid/32988
https://exchange.xforce.ibmcloud.com/vulnerabilities/47572
https://www.exploit-db.com/exploits/7554
http://osvdb.org/51032
http://securityreason.com/securityalert/4807
http://websecurity.com.ua/3424/
http://www.securityfocus.com/archive/1/506006/100/0/threaded
http://www.securityfocus.com/bid/32988
https://exchange.xforce.ibmcloud.com/vulnerabilities/47572
https://www.exploit-db.com/exploits/7554