Mozilla Firefox 3.0 beta 5 allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls document.write in an infinite loop.
Max CVSS
5.0
EPSS Score
3.51%
Published
2008-04-30
Updated
2018-10-11
The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird before 2.0.0.14, and SeaMonkey before 1.1.10 allows remote attackers to cause a denial of service (garbage collector crash) and possibly have other impacts via a crafted web page. NOTE: this is due to an incorrect fix for CVE-2008-1237.
Max CVSS
9.3
EPSS Score
4.71%
Published
2008-04-17
Updated
2023-02-13
Mozilla Firefox allows remote attackers to cause a denial of service (crash) via crafted image, as demonstrated by the zzuf lol-firefox.gif test case.
Max CVSS
4.3
EPSS Score
1.30%
Published
2008-04-17
Updated
2008-11-15
3 vulnerabilities found