Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2008-0412

Free InsightVM Trial No credit card necessary
Watch Demo See how it all works
Back to Search

SUSE Linux Security Vulnerability: CVE-2008-0412

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
02/08/2008
Created
07/25/2018
Added
02/17/2015
Modified
07/04/2017

Description

The browser engine in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via vectors related to the (1) nsTableFrame::GetFrameAtOrBefore, (2) nsAccessibilityService::GetAccessible, (3) nsBindingManager::GetNestedInsertionPoint, (4) nsXBLPrototypeBinding::AttributeChanged, (5) nsColumnSetFrame::GetContentInsertionFrame, and (6) nsLineLayout::TrimTrailingWhiteSpaceIn methods, and other vectors.

Solution(s)

  • suse-upgrade-epiphany
  • suse-upgrade-epiphany-devel
  • suse-upgrade-epiphany-doc
  • suse-upgrade-epiphany-extensions
  • suse-upgrade-mozilla
  • suse-upgrade-mozilla-calendar
  • suse-upgrade-mozilla-cs
  • suse-upgrade-mozilla-deat
  • suse-upgrade-mozilla-devel
  • suse-upgrade-mozilla-dom-inspector
  • suse-upgrade-mozilla-hu
  • suse-upgrade-mozilla-irc
  • suse-upgrade-mozilla-mail
  • suse-upgrade-mozilla-venkman
  • suse-upgrade-mozilla-xulrunner181
  • suse-upgrade-mozilla-xulrunner181-32bit
  • suse-upgrade-mozilla-xulrunner181-64bit
  • suse-upgrade-mozilla-xulrunner181-devel
  • suse-upgrade-mozilla-xulrunner181-l10n
  • suse-upgrade-mozillafirefox
  • suse-upgrade-mozillafirefox-translations
  • suse-upgrade-mozillathunderbird
  • suse-upgrade-mozillathunderbird-translations
  • suse-upgrade-seamonkey
  • suse-upgrade-seamonkey-dom-inspector
  • suse-upgrade-seamonkey-irc
  • suse-upgrade-seamonkey-mail
  • suse-upgrade-seamonkey-spellchecker
  • suse-upgrade-seamonkey-venkman
  • suse-upgrade-suse-release

References

View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;