Intrusion Prevention

Mozilla.Firefox.File.Input.Element.Memory.Corruption

Description

This indicates an attack attempt against a vulnerability in Mozilla Firefox.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted DOM method on a specific HTML form object. It allows a remote attacker to execute arbitrary code or cause the program to crash, resulting in a denial of service.

Affected Products

Mozilla Firefox versions prior to 3.0.4

Impact

System Compromise
Denial of Service

Recommended Actions

Update to version 3.0.4:
http://www.mozilla.org/.

CVE References

CVE-2008-5021