Home

CVE-2008-5016

Description

The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via multiple vectors that trigger an assertion failure or other consequences.

Risk Information

Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
21.255

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Mozilla Firefox (x64) 3.0.3Windows
Multiple vulnerabilities affected in Mozilla Thunderbird 2.0.0.9Windows
Multiple vulnerabilities affected in Mozilla_Firefox 3.0.3Windows
Multiple vulnerabilities affected in SeaMonkey 1.1.9Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.14Windows
Multiple Vulnerabilities are affected in Mozilla Firefox (x64) 3.0.3Windows
Multiple Vulnerabilities are affected in Mozilla_Firefox 3.0.3Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.0Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.12Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.17Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.4Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.5Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.6Windows
Multiple Vulnerabilities are affected in Mozilla Thunderbird 2.0.0.9Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-343016Mozilla Firefox (x64) (132.0.2)
PATCH-315938Mozilla Thunderbird (68.12.0)
PATCH-343015Mozilla Firefox (132.0.2)
PATCH-341197SeaMonkey (2.53.19)
PATCH-315938Mozilla Thunderbird (68.12.0)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234