CVE - CVE-2008-1380

CVE-ID
CVE-2008-1380	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird before 2.0.0.14, and SeaMonkey before 1.1.10 allows remote attackers to cause a denial of service (garbage collector crash) and possibly have other impacts via a crafted web page. NOTE: this is due to an incorrect fix for CVE-2008-1237.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1019873 URL:http://www.securitytracker.com/id?1019873 MISC:20080508 FLEA-2008-0008-1 firefox URL:http://www.securityfocus.com/archive/1/491838/100/0/threaded MISC:238492 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1~~ (Obsolete source) MISC:28818 URL:http://www.securityfocus.com/bid/28818 MISC:29787 URL:http://secunia.com/advisories/29787 MISC:29793 URL:http://secunia.com/advisories/29793 MISC:29828 URL:http://secunia.com/advisories/29828 MISC:29860 URL:http://secunia.com/advisories/29860 MISC:29883 URL:http://secunia.com/advisories/29883 MISC:29908 URL:http://secunia.com/advisories/29908 MISC:29911 URL:http://secunia.com/advisories/29911 MISC:29912 URL:http://secunia.com/advisories/29912 MISC:29947 URL:http://secunia.com/advisories/29947 MISC:30012 URL:http://secunia.com/advisories/30012 MISC:30029 URL:http://secunia.com/advisories/30029 MISC:30192 URL:http://secunia.com/advisories/30192 MISC:30327 URL:http://secunia.com/advisories/30327 MISC:30620 URL:http://secunia.com/advisories/30620 MISC:30717 URL:http://secunia.com/advisories/30717 MISC:31023 URL:http://secunia.com/advisories/31023 MISC:31377 URL:http://secunia.com/advisories/31377 MISC:33434 URL:http://secunia.com/advisories/33434 MISC:ADV-2008-1251 URL:~~http://www.vupen.com/english/advisories/2008/1251/references~~ (Obsolete source) MISC:ADV-2008-1793 URL:~~http://www.vupen.com/english/advisories/2008/1793/references~~ (Obsolete source) MISC:DSA-1555 URL:http://www.debian.org/security/2008/dsa-1555 MISC:DSA-1558 URL:http://www.debian.org/security/2008/dsa-1558 MISC:DSA-1562 URL:http://www.debian.org/security/2008/dsa-1562 MISC:DSA-1696 URL:http://www.debian.org/security/2009/dsa-1696 MISC:FEDORA-2008-3231 URL:https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00407.html MISC:FEDORA-2008-3264 URL:https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00463.html MISC:FEDORA-2008-3519 URL:https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00058.html MISC:FEDORA-2008-3557 URL:https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00074.html MISC:GLSA-200805-18 URL:http://www.gentoo.org/security/en/glsa/glsa-200805-18.xml MISC:GLSA-200808-03 URL:http://security.gentoo.org/glsa/glsa-200808-03.xml MISC:MDVSA-2008:110 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:110~~ (Obsolete source) MISC:RHSA-2008:0222 URL:http://www.redhat.com/support/errata/RHSA-2008-0222.html MISC:RHSA-2008:0223 URL:http://www.redhat.com/support/errata/RHSA-2008-0223.html MISC:RHSA-2008:0224 URL:http://www.redhat.com/support/errata/RHSA-2008-0224.html MISC:SSA:2008-108-01 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.391769 MISC:SSA:2008-191-03 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.383152 MISC:SUSE-SR:2008:011 URL:http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html MISC:SUSE-SR:2008:013 URL:http://www.novell.com/linux/security/advisories/2008_13_sr.html MISC:USN-602-1 URL:http://www.ubuntu.com/usn/usn-602-1 MISC:VU#441529 URL:http://www.kb.cert.org/vuls/id/441529 MISC:http://www.mozilla.org/security/announce/2008/mfsa2008-20.html URL:http://www.mozilla.org/security/announce/2008/mfsa2008-20.html MISC:https://bugzilla.mozilla.org/show_bug.cgi?id=425576 URL:https://bugzilla.mozilla.org/show_bug.cgi?id=425576 MISC:mozilla-garbage-code-execution(41857) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/41857 MISC:oval:org.mitre.oval:def:10752 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10752
Assigning CNA
Red Hat, Inc.
Date Record Created
20080318	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080318)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)