Vulnerability Description
Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger memory corruption.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | 1.5 |
| Mozilla | Seamonkey | 1.0.9 |
| Mozilla | Thunderbird | 1.5 |
Related Weaknesses (CWE)
References
- http://fedoranews.org/cms/node/2747
- http://fedoranews.org/cms/node/2749
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579
- http://osvdb.org/35138
- http://secunia.com/advisories/24406Vendor Advisory
- http://secunia.com/advisories/24456Vendor Advisory
- http://secunia.com/advisories/25469Vendor Advisory
- http://secunia.com/advisories/25476Vendor Advisory
- http://secunia.com/advisories/25488Vendor Advisory
- http://secunia.com/advisories/25489Vendor Advisory
- http://secunia.com/advisories/25490Vendor Advisory
- http://secunia.com/advisories/25491Vendor Advisory
- http://secunia.com/advisories/25492Vendor Advisory
- http://secunia.com/advisories/25496Vendor Advisory
FAQ
What is CVE-2007-2868?
CVE-2007-2868 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1....
How severe is CVE-2007-2868?
CVE-2007-2868 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2868?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox, Mozilla Seamonkey, Mozilla Thunderbird.