Schweregrad:: Kritisch
  CVE Kennungen:: CVE-2008-4061
  Hinweisdatum: 21 Juli 2015

  Beschreibung

Integer overflow in the MathML component in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via an mtd element with a large integer value in the rowspan attribute, related to the layout engine. nvd: NOTE: Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Without further investigation we cannot rule out the possibility that for some of these an attacker might be able to prepare memory for exploitation through some means other than JavaScript such as large images.

  Trend Micro Lösungen

Apply associated Trend Micro DPI Rules.

  Lösungen

  Trend Micro Deep Security DPI Rule Number: 1002886
  Trend Micro Deep Security DPI Rule Name: 1002886 - Mozilla Firefox MathML Integer Overflow DoS

  Betroffene Software und Version:

  • mozilla firefox 0.10
  • mozilla firefox 0.10.1
  • mozilla firefox 0.8
  • mozilla firefox 0.9
  • mozilla firefox 0.9.1
  • mozilla firefox 0.9.2
  • mozilla firefox 0.9.3
  • mozilla firefox 0.9_rc
  • mozilla firefox 1.0
  • mozilla firefox 1.0.1
  • mozilla firefox 1.0.2
  • mozilla firefox 1.0.3
  • mozilla firefox 1.0.4
  • mozilla firefox 1.0.5
  • mozilla firefox 1.0.6
  • mozilla firefox 1.0.7
  • mozilla firefox 1.0.8
  • mozilla firefox 1.5
  • mozilla firefox 1.5.0.1
  • mozilla firefox 1.5.0.10
  • mozilla firefox 1.5.0.11
  • mozilla firefox 1.5.0.12
  • mozilla firefox 1.5.0.2
  • mozilla firefox 1.5.0.3
  • mozilla firefox 1.5.0.4
  • mozilla firefox 1.5.0.5
  • mozilla firefox 1.5.0.6
  • mozilla firefox 1.5.0.7
  • mozilla firefox 1.5.0.8
  • mozilla firefox 1.5.0.9
  • mozilla firefox 1.5.1
  • mozilla firefox 1.5.2
  • mozilla firefox 1.5.3
  • mozilla firefox 1.5.4
  • mozilla firefox 1.5.5
  • mozilla firefox 1.5.6
  • mozilla firefox 1.5.7
  • mozilla firefox 1.5.8
  • mozilla firefox 1.8
  • mozilla firefox 2.0
  • mozilla firefox 2.0.0.1
  • mozilla firefox 2.0.0.10
  • mozilla firefox 2.0.0.11
  • mozilla firefox 2.0.0.12
  • mozilla firefox 2.0.0.13
  • mozilla firefox 2.0.0.14
  • mozilla firefox 2.0.0.15
  • mozilla firefox 2.0.0.16
  • mozilla firefox 3.0
  • mozilla firefox 3.0.1
  • mozilla seamonkey 1.0
  • mozilla seamonkey 1.0.1
  • mozilla seamonkey 1.0.2
  • mozilla seamonkey 1.0.3
  • mozilla seamonkey 1.0.4
  • mozilla seamonkey 1.0.5
  • mozilla seamonkey 1.0.6
  • mozilla seamonkey 1.0.7
  • mozilla seamonkey 1.0.8
  • mozilla seamonkey 1.0.9
  • mozilla seamonkey 1.0.99
  • mozilla seamonkey 1.1
  • mozilla seamonkey 1.1.1
  • mozilla seamonkey 1.1.10
  • mozilla seamonkey 1.1.11
  • mozilla thunderbird 0.1
  • mozilla thunderbird 0.2
  • mozilla thunderbird 0.3
  • mozilla thunderbird 0.4
  • mozilla thunderbird 0.5
  • mozilla thunderbird 0.6
  • mozilla thunderbird 0.7
  • mozilla thunderbird 0.7.1
  • mozilla thunderbird 0.7.2
  • mozilla thunderbird 0.7.3
  • mozilla thunderbird 0.8
  • mozilla thunderbird 0.9
  • mozilla thunderbird 1.0
  • mozilla thunderbird 1.0.1
  • mozilla thunderbird 1.0.2
  • mozilla thunderbird 1.0.3
  • mozilla thunderbird 1.0.4
  • mozilla thunderbird 1.0.5
  • mozilla thunderbird 1.0.6
  • mozilla thunderbird 1.0.7
  • mozilla thunderbird 1.0.8
  • mozilla thunderbird 1.5
  • mozilla thunderbird 1.5.0.1
  • mozilla thunderbird 1.5.0.10
  • mozilla thunderbird 1.5.0.11
  • mozilla thunderbird 1.5.0.2
  • mozilla thunderbird 1.5.0.3
  • mozilla thunderbird 1.5.0.4
  • mozilla thunderbird 1.5.0.6
  • mozilla thunderbird 1.5.0.7
  • mozilla thunderbird 1.5.0.8
  • mozilla thunderbird 1.5.0.9
  • mozilla thunderbird 1.5.1
  • mozilla thunderbird 1.5.2
  • mozilla thunderbird 1.7.1
  • mozilla thunderbird 1.7.3
  • mozilla thunderbird 2.0.0.0
  • mozilla thunderbird 2.0.0.1
  • mozilla thunderbird 2.0.0.11
  • mozilla thunderbird 2.0.0.12
  • mozilla thunderbird 2.0.0.13
  • mozilla thunderbird 2.0.0.14
  • mozilla thunderbird 2.0.0.15
  • mozilla thunderbird 2.0.0.16
  • mozilla thunderbird 2.0.0.2
  • mozilla thunderbird 2.0.0.3
  • mozilla thunderbird 2.0.0.4
  • mozilla thunderbird 2.0.0.5
  • mozilla thunderbird 2.0.0.6
  • mozilla thunderbird 2.0.0.8
  • mozilla thunderbird 2.0.0.9
  • mozilla thunderbird 2.0_.12
  • mozilla thunderbird 2.0_.13
  • mozilla thunderbird 2.0_.14
  • mozilla thunderbird 2.0_.4
  • mozilla thunderbird 2.0_.5
  • mozilla thunderbird 2.0_.6
  • mozilla thunderbird 2.0_.9
  • mozilla thunderbird 2.0_8