At a glance:
| ID | 15869 |
| Created | Oct 21, 2008 |
| Description Updated | Oct 19, 2017 |
| Severity |
|
| Coverage |
IPS (Regular DB)
IPS (Extended DB)
|
| Default Action | drop |
| Active |
|
| Affected OS | Windows, Linux |
| Affected App | Mozilla |
Legend
| Enabled/Available |
|
| Disabled/Not Avaliable |
|
Update History
| Date | Version | Detail |
|---|---|---|
| 2017-10-20 | 12.249 | Previous name: "Mozilla. UTF8. URL. Stack. Buffer. Overflow" |
Refine Search
Intrusion Prevention
Mozilla.UTF-8.URL.Stack.Buffer.Overflow
Description
This indicates an attack attempt against a buffer-overflow vulnerability in Mozilla Firefox.
The vulnerability is caused by an error when the vulnerable software handles a crafted UTF-8 long URL. It allows a remote attacker to execute arbitrary code via sending a crafted web page.
Affected Products
Mozilla Firefox before 2.0.0.17
SeaMonkey before 1.1.12.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the following or later versions:
Firefox 2.0.0.17
Thunderbird 2.0.0.17
SeaMonkey 1.1.12.
CVE References
CVE-2008-0016Other References
http://www.mozilla.org/security/announce/2008/mfsa2008-37.html