You are here

CVE-2008-1380

Vincent (CVE) Danen's picture
The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird before 2.0.0.14, and SeaMonkey before 1.1.10 allows remote attackers to cause a denial of service (garbage collector crash) and possibly have other impacts via a crafted web page. NOTE: this is due to an incorrect fix for CVE-2008-1237.

Details Source

Mitre

Public Date

2008-04-16 00:00:00

Impact

Critical

Bugzilla

CVE-2008-1380 Firefox JavaScript garbage collection crash

Bugzilla ID

440 518

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2008:0223 2008-04-17
Red Hat Enterprise Linux 5 (firefox) RHSA-2008:0222 2008-04-17
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2008:0223 2008-04-17
Red Hat Enterprise Linux 5 (thunderbird) RHSA-2008:0224 2008-04-30
Red Hat Enterprise Linux 4 (firefox) RHSA-2008:0222 2008-04-17
Red Hat Enterprise Linux 4 (seamonkey) RHSA-2008:0223 2008-04-17
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2008:0224 2008-04-30
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) (thunderbird) RHSA-2008:0224 2008-04-30