Skip to navigation

CVE Database

CVE-2008-2785

Impact: Critical
Public: 2008-07-16
Bugzilla: 452204: CVE-2008-2785 mozilla: CSS reference counter overflow (ZDI-CAN-349)

Details

The MITRE CVE dictionary describes this issue as:

Mozilla Firefox before 2.0.0.16 and 3.x before 3.0.1, Thunderbird before 2.0.0.16, and SeaMonkey before 1.1.11 use an incorrect integer data type as a CSS object reference counter in the CSSValue array (aka nsCSSValue:Array) data structure, which allows remote attackers to execute arbitrary code via a large number of references to a common CSS object, leading to a counter overflow and a free of in-use memory, aka ZDI-CAN-349.

Find out more about CVE-2008-2785 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
RHEL Optional Productivity Applications version 5 (thunderbird) RHSA-2008:0616 July 23, 2008
Red Hat Enterprise Linux Desktop version 5 (thunderbird) RHSA-2008:0616 July 23, 2008
Red Hat Enterprise Linux ES EUS (v. 4.5) (firefox) RHSA-2008:0598 July 16, 2008
Red Hat Enterprise Linux version 2.1 (seamonkey) RHSA-2008:0599 July 16, 2008
Red Hat Enterprise Linux version 3 (seamonkey) RHSA-2008:0599 July 16, 2008
Red Hat Enterprise Linux version 4 RHSA-2008:0599 July 16, 2008
Red Hat Enterprise Linux version 4 (firefox) RHSA-2008:0598 July 16, 2008
Red Hat Enterprise Linux version 4 (thunderbird) RHSA-2008:0616 July 23, 2008
Red Hat Enterprise Linux version 5 (firefox) RHSA-2008:0597 July 16, 2008

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.