Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2005-0399

Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.

Related bugs and status

CVE-2005-0399 (Candidate) is related to these bugs:

Bug #14493: [warty] [CAN-2005-0399][CAN-2005-0401][CAN-2005-0402] Three security vulnerabilities in Firefox 1.0.1

Summary				In	Importance	Status
	14493	[warty] [CAN-2005-0399][CAN-2005-0401][CAN-2005-0402] Three security vulnerabilities in Firefox 1.0.1		firefox (Ubuntu)	High	Fix Released
	14493	[warty] [CAN-2005-0399][CAN-2005-0401][CAN-2005-0402] Three security vulnerabilities in Firefox 1.0.1		firefox (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.redha...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://xforce.iss.net/...
MISC: http://www.vupen.com/e...
MISC: http://www.gentoo.org/...
MISC: http://www.ciac.org/ci...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: ftp://ftp.sco.com/pub/...
MISC: http://www.novell.com/...
MISC: http://www.kb.cert.org...
MISC: https://exchange.xforc...
MISC: http://www.mozilla.org...
MISC: https://oval.cisecurit...
MISC: https://oval.cisecurit...