CVE-2004-1613

Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG tag followed by a null character and some trailing characters, as demonstrated by mangleme.

Affected Software

Name	Vendor	Start Version	End Version
Mozilla	Mozilla	1.0 (including)	1.0 (including)
Mozilla	Mozilla	1.0-rc1 (including)	1.0-rc1 (including)
Mozilla	Mozilla	1.0-rc2 (including)	1.0-rc2 (including)
Mozilla	Mozilla	1.0.1 (including)	1.0.1 (including)
Mozilla	Mozilla	1.0.2 (including)	1.0.2 (including)
Mozilla	Mozilla	1.1 (including)	1.1 (including)
Mozilla	Mozilla	1.1-alpha (including)	1.1-alpha (including)
Mozilla	Mozilla	1.1-beta (including)	1.1-beta (including)
Mozilla	Mozilla	1.2 (including)	1.2 (including)
Mozilla	Mozilla	1.2-alpha (including)	1.2-alpha (including)
Mozilla	Mozilla	1.2-beta (including)	1.2-beta (including)
Mozilla	Mozilla	1.2.1 (including)	1.2.1 (including)
Mozilla	Mozilla	1.3 (including)	1.3 (including)
Mozilla	Mozilla	1.3.1 (including)	1.3.1 (including)
Mozilla	Mozilla	1.4 (including)	1.4 (including)
Mozilla	Mozilla	1.4-alpha (including)	1.4-alpha (including)
Mozilla	Mozilla	1.4-beta (including)	1.4-beta (including)
Mozilla	Mozilla	1.4.1 (including)	1.4.1 (including)
Mozilla	Mozilla	1.4.2 (including)	1.4.2 (including)
Mozilla	Mozilla	1.4.4 (including)	1.4.4 (including)
Mozilla	Mozilla	1.5 (including)	1.5 (including)
Mozilla	Mozilla	1.6 (including)	1.6 (including)
Mozilla	Mozilla	1.7 (including)	1.7 (including)
Mozilla	Mozilla	1.7-rc3 (including)	1.7-rc3 (including)
Mozilla	Mozilla	1.7.1 (including)	1.7.1 (including)
Mozilla	Mozilla	1.7.2 (including)	1.7.2 (including)
Mozilla	Mozilla	1.7.3 (including)	1.7.3 (including)
Mozilla	Mozilla	1.8-alpha2 (including)	1.8-alpha2 (including)
Propack	Sgi	3.0 (including)	3.0 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1613
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References