Firefox XUL Parsing Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

The host is installed with Mozilla Firefox browser and is prone to XUL Parsing Vulnerability.

Impact

Successful exploitation will allow attacker to cause the browser to crash. Impact Level: Application

Solution

Upgrade to Firefox version 3.6.3 or later, For updates refer to http://www.mozilla.com/en-US/firefox/firefox.html

Insight

Error in browser due to improper parsing of XUL (XML) documents while opening a specially-crafted XML document containing long series of start-tags with no corresponding end-tags.

Affected

Firefox version 3.0 to 3.0.8 on Linux.

References

http://xforce.iss.net/xforce/xfdb/49521

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-1232
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

freeFTPD PORT Command Denial of Service Vulnerability
chm2pdf Insecure Temporary File Creation or DoS Vulnerability
Apple Safari Denial Of Service Vulnerability - Jul09
ejabberd 'mod_pubsub' Module Denial of Service Vulnerability
ClamAV Prior to 0.96.5 Multiple Vulnerabilities

Firefox XUL Parsing Denial of Service Vulnerability (Linux)

Take action and discover your vulnerabilities