CVE Vulnerabilities

CVE-2007-2869

Published: Jun 01, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service (persistent temporary CPU consumption) via a large number of characters in a submitted form.

Affected Software

Name Vendor Start Version End Version
Firefox Mozilla 1.5 1.5
Firefox Mozilla 1.5.0.1 1.5.0.1
Firefox Mozilla 1.5.0.2 1.5.0.2
Firefox Mozilla 1.5.0.3 1.5.0.3
Firefox Mozilla 1.5.0.4 1.5.0.4
Firefox Mozilla 1.5.0.5 1.5.0.5
Firefox Mozilla 1.5.0.6 1.5.0.6
Firefox Mozilla 1.5.0.7 1.5.0.7
Firefox Mozilla 1.5.0.8 1.5.0.8
Firefox Mozilla 1.5.0.9 1.5.0.9
Firefox Mozilla 1.5.0.10 1.5.0.10
Firefox Mozilla 1.5.0.11 1.5.0.11
Firefox Mozilla 2.0 2.0
Firefox Mozilla 2.0.0.1 2.0.0.1
Firefox Mozilla 2.0.0.2 2.0.0.2
Firefox Mozilla 2.0.0.3 2.0.0.3
Red Hat Enterprise Linux 2.1 RedHat seamonkey-0:1.0.9-0.1.el2 *
Red Hat Enterprise Linux 3 RedHat seamonkey-0:1.0.9-0.1.el3 *
Red Hat Enterprise Linux 4 RedHat firefox-0:1.5.0.12-0.1.el4 *
Red Hat Enterprise Linux 4 RedHat thunderbird-0:1.5.0.12-0.1.el4 *
Red Hat Enterprise Linux 4 RedHat devhelp-0:0.10-0.8.el4 *
Red Hat Enterprise Linux 4 RedHat seamonkey-0:1.0.9-2.el4 *
Red Hat Enterprise Linux 5 RedHat devhelp-0:0.12-11.el5 *
Red Hat Enterprise Linux 5 RedHat firefox-0:1.5.0.12-1.el5 *
Red Hat Enterprise Linux 5 RedHat yelp-0:2.16.0-15.el5 *
Red Hat Enterprise Linux 5 RedHat thunderbird-0:1.5.0.12-1.el5 *
Firefox Ubuntu dapper *
Firefox Ubuntu edgy *
Firefox Ubuntu feisty *
Lightning-sunbird Ubuntu devel *
Midbrowser Ubuntu devel *

References