CVE - CVE-2008-4064

CVE-ID
CVE-2008-4064	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to graphics rendering and (1) handling of a long alert messagebox in the cairo_surface_set_device_offset function, (2) integer overflows when handling animated PNG data in the info_callback function in nsPNGDecoder.cpp, and (3) an integer overflow when handling SVG data in the nsSVGFEGaussianBlurElement::SetupPredivide function in nsSVGFilters.cpp.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1020916 URL:http://www.securitytracker.com/id?1020916 MISC:256408 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1~~ (Obsolete source) MISC:31346 URL:http://www.securityfocus.com/bid/31346 MISC:31987 URL:http://secunia.com/advisories/31987 MISC:32011 URL:http://secunia.com/advisories/32011 MISC:32012 URL:http://secunia.com/advisories/32012 MISC:32025 URL:http://secunia.com/advisories/32025 MISC:32044 URL:http://secunia.com/advisories/32044 MISC:32082 URL:http://secunia.com/advisories/32082 MISC:32089 URL:http://secunia.com/advisories/32089 MISC:32095 URL:http://secunia.com/advisories/32095 MISC:32096 URL:http://secunia.com/advisories/32096 MISC:32196 URL:http://secunia.com/advisories/32196 MISC:34501 URL:http://secunia.com/advisories/34501 MISC:ADV-2008-2661 URL:~~http://www.vupen.com/english/advisories/2008/2661~~ (Obsolete source) MISC:ADV-2009-0977 URL:~~http://www.vupen.com/english/advisories/2009/0977~~ (Obsolete source) MISC:FEDORA-2008-8425 URL:https://www.redhat.com/archives/fedora-package-announce/2008-September/msg01335.html MISC:RHSA-2008:0879 URL:http://www.redhat.com/support/errata/RHSA-2008-0879.html MISC:SSA:2008-269-02 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.379422 MISC:SSA:2008-270-01 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.412123 MISC:SUSE-SA:2008:050 URL:http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00005.html MISC:USN-645-1 URL:http://www.ubuntu.com/usn/usn-645-1 MISC:USN-645-2 URL:http://www.ubuntu.com/usn/usn-645-2 MISC:USN-647-1 URL:http://www.ubuntu.com/usn/usn-647-1 MISC:firefox-imagegraphics-code-execution(45357) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/45357 MISC:http://www.mozilla.org/security/announce/2008/mfsa2008-42.html URL:http://www.mozilla.org/security/announce/2008/mfsa2008-42.html MISC:https://bugzilla.mozilla.org/show_bug.cgi?id=441368 URL:https://bugzilla.mozilla.org/show_bug.cgi?id=441368 MISC:https://bugzilla.mozilla.org/show_bug.cgi?id=441995 URL:https://bugzilla.mozilla.org/show_bug.cgi?id=441995 MISC:https://bugzilla.mozilla.org/show_bug.cgi?id=443693 URL:https://bugzilla.mozilla.org/show_bug.cgi?id=443693 MISC:oval:org.mitre.oval:def:11743 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11743
Assigning CNA
Red Hat, Inc.
Date Record Created
20080912	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080912)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)