CVE-2002-1091

Netscape 6.2.3 and earlier, and Mozilla 1.0.1, allow remote attackers to corrupt heap memory and execute arbitrary code via a GIF image with a zero width.

Affected Software

Name	Vendor	Start Version	End Version
Mozilla	Mozilla	0.9.5 (including)	0.9.5 (including)
Mozilla	Mozilla	0.9.6 (including)	0.9.6 (including)
Mozilla	Mozilla	0.9.7 (including)	0.9.7 (including)
Mozilla	Mozilla	0.9.8 (including)	0.9.8 (including)
Mozilla	Mozilla	0.9.9 (including)	0.9.9 (including)
Mozilla	Mozilla	1.0 (including)	1.0 (including)
Navigator	Netscape	6.2 (including)	6.2 (including)
Navigator	Netscape	6.2.1 (including)	6.2.1 (including)
Navigator	Netscape	6.2.2 (including)	6.2.2 (including)
Navigator	Netscape	6.2.3 (including)	6.2.3 (including)
Opera_web_browser	Opera_software	5.12 (including)	5.12 (including)
Opera_web_browser	Opera_software	6.0 (including)	6.0 (including)
Opera_web_browser	Opera_software	6.0.1 (including)	6.0.1 (including)
Red Hat Enterprise Linux AS (Advanced Server) version 2.1	RedHat		*
Red Hat Linux 7.2	RedHat		*
Red Hat Linux 7.3	RedHat		*
Red Hat Linux 8.0	RedHat		*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1091
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References