Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the layout engine and (1) a zero value of the this variable in the nsContentList::Item function; (2) interaction of the indic IME extension, a Hindi language selection, and the g character; and (3) interaction of the nsFrameList::SortByContentOrder function with a certain insufficient protection of inline frames.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ubuntu_linux | Canonical | 6.06 (including) | 6.06 (including) |
Ubuntu_linux | Canonical | 7.04 (including) | 7.04 (including) |
Ubuntu_linux | Canonical | 7.10 (including) | 7.10 (including) |
Ubuntu_linux | Canonical | 8.04 (including) | 8.04 (including) |