2
Candidate: CVE-2008-2419
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2419
5
http://www.0x000000.com/?i=576
7
Mozilla Firefox 2.0.0.14 allows remote attackers to cause a denial of
8
service (heap corruption and application crash) or possibly execute
9
arbitrary code by triggering an error condition during certain Iframe
10
operations between a JSframe write and a JSframe close, as demonstrated by
11
an error in loading an empty Java applet defined by a 'src="javascript:"'
15
jdstrand> firefox 3 not affected. seems a simple DoS, but will elevate if
16
evidence of ability to execute code
17
mdeslaur> upstream couldn't reproduce, ignoring.
19
https://bugzilla.mozilla.org/show_bug.cgi?id=435130
25
upstream_firefox: needs-triage
26
dapper_firefox: ignored (reached end-of-life)
27
feisty_firefox: needed (reached end-of-life)
28
gutsy_firefox: needed (reached end-of-life)
29
hardy_firefox: ignored
36
upstream_firefox-3.0: not-affected
37
dapper_firefox-3.0: DNE
38
feisty_firefox-3.0: DNE
39
gutsy_firefox-3.0: not-affected
40
devel_firefox: not-affected
41
hardy_firefox-3.0: not-affected
42
intrepid_firefox-3.0: not-affected
43
jaunty_firefox-3.0: not-affected
44
karmic_firefox-3.0: DNE
45
devel_firefox-3.0: DNE
48
upstream_xulrunner: needs-triage
50
feisty_xulrunner: needs-triage (reached end-of-life)
51
gutsy_xulrunner: needs-triage (reached end-of-life)
52
hardy_xulrunner: ignored
53
intrepid_xulrunner: ignored
54
jaunty_xulrunner: ignored
55
karmic_xulrunner: ignored
59
upstream_iceape: needs-triage
62
gutsy_iceape: needs-triage (reached end-of-life)
70
upstream_iceweasel: needs-triage
75
intrepid_iceweasel: DNE
81
upstream_seamonkey: needs-triage
85
hardy_seamonkey: ignored
86
intrepid_seamonkey: ignored
87
jaunty_seamonkey: ignored
88
karmic_seamonkey: ignored
89
devel_seamonkey: ignored