Summary
The host is installed with Firefox browser and is prone to Denial of Service vulnerabilities.
Impact
Successful exploitation could allows remote attacker to cause a vulnerable application to crash.
Impact Level: Application
Solution
Upgrade to Firefox version 3.5.5 or later,
http://www.mozilla.com/en-US/firefox/all.html
Insight
A NULL pointer dereference error in 'nsGIFDecoder2::GifWrite' function in 'decoders/gif/nsGIFDecoder2.cpp' in libpr0n, which can be exploited to cause application crash via an animated 'GIF' file with a large image size.
Affected
Mozilla Firefox version prior to 3.5.5 on Windows.
References
Severity
Classification
-
CVE CVE-2009-3978 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- F-Secure Policy Manager Server fsmsh.dll module DoS
- Eggdrop 'ctcpbuf' Remote Denial Of Service Vulnerability
- Baidu Spark Browser Denial of Service Vulnerability -01 August14 (Windows)
- CUPS IPP Packets Processing Denial of Service Vulnerability
- ClamAV LZH File Unpacking Denial of Service Vulnerability (Linux)