CVE - CVE-2007-0776

CVE-ID
CVE-2007-0776	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Heap-based buffer overflow in the _cairo_pen_init function in Mozilla Firefox 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to execute arbitrary code via a large stroke-width attribute in the clipPath element in an SVG file.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:22694 URL:http://www.securityfocus.com/bid/22694 BUGTRAQ:20070226 rPSA-2007-0040-1 firefox URL:http://www.securityfocus.com/archive/1/461336/100/0/threaded BUGTRAQ:20070303 rPSA-2007-0040-3 firefox thunderbird URL:http://www.securityfocus.com/archive/1/461809/100/0/threaded CERT-VN:VU#551436 URL:http://www.kb.cert.org/vuls/id/551436 CONFIRM:http://www.mozilla.org/security/announce/2007/mfsa2007-01.html CONFIRM:https://issues.rpath.com/browse/RPL-1081 FEDORA:FEDORA-2007-281 URL:http://fedoranews.org/cms/node/2713 FEDORA:FEDORA-2007-293 URL:http://fedoranews.org/cms/node/2728 FEDORA:FEDORA-2007-308 URL:http://fedoranews.org/cms/node/2747 FEDORA:FEDORA-2007-309 URL:http://fedoranews.org/cms/node/2749 GENTOO:GLSA-200703-04 URL:http://security.gentoo.org/glsa/glsa-200703-04.xml GENTOO:GLSA-200703-08 URL:http://www.gentoo.org/security/en/glsa/glsa-200703-08.xml GENTOO:GLSA-200703-18 URL:http://security.gentoo.org/glsa/glsa-200703-18.xml HP:HPSBUX02153 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742 HP:SSRT061181 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742 MANDRIVA:MDKSA-2007:052 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2007:052~~ (Obsolete source) MISC:https://bugzilla.mozilla.org/show_bug.cgi?id=360645 OSVDB:32113 URL:~~http://www.osvdb.org/32113~~ (Obsolete source) SECTRACK:1017698 URL:http://www.securitytracker.com/id?1017698 SECUNIA:24205 URL:http://secunia.com/advisories/24205 SECUNIA:24238 URL:http://secunia.com/advisories/24238 SECUNIA:24252 URL:http://secunia.com/advisories/24252 SECUNIA:24293 URL:http://secunia.com/advisories/24293 SECUNIA:24320 URL:http://secunia.com/advisories/24320 SECUNIA:24328 URL:http://secunia.com/advisories/24328 SECUNIA:24333 URL:http://secunia.com/advisories/24333 SECUNIA:24384 URL:http://secunia.com/advisories/24384 SECUNIA:24389 URL:http://secunia.com/advisories/24389 SECUNIA:24393 URL:http://secunia.com/advisories/24393 SECUNIA:24406 URL:http://secunia.com/advisories/24406 SECUNIA:24410 URL:http://secunia.com/advisories/24410 SECUNIA:24437 URL:http://secunia.com/advisories/24437 SECUNIA:24455 URL:http://secunia.com/advisories/24455 SECUNIA:24456 URL:http://secunia.com/advisories/24456 SECUNIA:24457 URL:http://secunia.com/advisories/24457 SECUNIA:24522 URL:http://secunia.com/advisories/24522 SLACKWARE:SSA:2007-066-03 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.374851 SLACKWARE:SSA:2007-066-04 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.363947 SLACKWARE:SSA:2007-066-05 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.338131 SUSE:SUSE-SA:2007:019 URL:http://lists.suse.com/archive/suse-security-announce/2007-Mar/0001.html SUSE:SUSE-SA:2007:022 URL:http://www.novell.com/linux/security/advisories/2007_22_mozilla.html UBUNTU:USN-428-1 URL:http://www.ubuntu.com/usn/usn-428-1 UBUNTU:USN-431-1 URL:http://www.ubuntu.com/usn/usn-431-1 VUPEN:ADV-2007-0718 URL:~~http://www.vupen.com/english/advisories/2007/0718~~ (Obsolete source) VUPEN:ADV-2007-0719 URL:~~http://www.vupen.com/english/advisories/2007/0719~~ (Obsolete source) VUPEN:ADV-2008-0083 URL:~~http://www.vupen.com/english/advisories/2008/0083~~ (Obsolete source) XF:firefox-strokewidth-bo(32698) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/32698
Assigning CNA
Red Hat, Inc.
Date Record Created
20070206	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070206)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)