Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of service (application crash) via a large HTML file that loads a DOM call from within nested DIV tags, which causes part of the currently rendering page and referenced objects to be deleted.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xpcom | Xpcom | * | * |
| Firefox | Ubuntu | dapper | * |
| Firefox | Ubuntu | devel | * |
| Firefox | Ubuntu | edgy | * |
| Firefox | Ubuntu | feisty | * |
References
- http://marc.info/?l=bugtraq\u0026m=112199282029269\u0026w=2
- http://securitytracker.com/id?1014548
- http://securitytracker.com/id?1014550
- http://www.gulftech.org/?node=research\u0026article_id=00091-07212005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21472
- http://marc.info/?l=bugtraq\u0026m=112199282029269\u0026w=2
- http://securitytracker.com/id?1014548
- http://securitytracker.com/id?1014550
- http://www.gulftech.org/?node=research\u0026article_id=00091-07212005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21472