Multiple integer overflows in the (1) PL_Base64Decode and (2) PL_Base64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors that trigger buffer overflows.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
Mozilla Thunderbird 2.0.0.14
Mozilla Thunderbird 2.0.0.13
Mozilla Thunderbird 2.0.0.12
Mozilla Thunderbird 2.0.0.11
Mozilla Thunderbird 2.0.0.9
Mozilla Thunderbird 2.0.0.8
Mozilla Thunderbird 2.0.0.7
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 2.0.0.5
Mozilla Thunderbird 2.0.0.4
Mozilla Thunderbird 2.0.0.3
Mozilla Thunderbird 2.0.0.2
Mozilla Thunderbird 2.0.0.1
Mozilla Thunderbird 2.0.0.0
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0 Beta5 (not an official CPE)
Mozilla Firefox 3.0 Beta2 (not an official CPE)
Mozilla Firefox 3.0 Alpha (not an official CPE)
Mozilla Firefox 3.0
Mozilla Firefox 2.0 8 (not an official CPE)
Mozilla Firefox 2.0 .10 (not an official CPE)
Mozilla Firefox 2.0 .9 (not an official CPE)
Mozilla Firefox 2.0 .7 (not an official CPE)
Mozilla Firefox 2.0 .6 (not an official CPE)
Mozilla Firefox 2.0 .5 (not an official CPE)
Mozilla Firefox 2.0 .4 (not an official CPE)
Mozilla Firefox 2.0 .1 (not an official CPE)
Mozilla Firefox 2.0.0.21 (not an official CPE)
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.19
Mozilla Firefox 2.0.0.18
Mozilla Firefox 2.0.0.17
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.6
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0 Rc3 (not an official CPE)
Mozilla Firefox 2.0 Rc2 (not an official CPE)
Mozilla Firefox 2.0 Beta 1 (not an official CPE)
Mozilla Firefox 2.0 Beta1 (not an official CPE)
Mozilla Firefox 2.0
Mozilla Firefox 1.8
Mozilla Firefox 1.5.8
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.5
Mozilla Firefox 1.5.4
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5.2
Mozilla Firefox 1.5.1
Mozilla Firefox 1.5.0.12
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5 Beta 2
Mozilla Firefox 1.5 Beta 1
Mozilla Firefox 1.5
Mozilla Firefox 1.4.1
Mozilla Firefox 1.0.8
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.6 Linux (not an official CPE)
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0 Preview Release
Mozilla Firefox 1.0
Mozilla Firefox 0.10.1
Mozilla Firefox 0.10
Mozilla Firefox 0.9 rc (not an official CPE)
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Firefox 0.8
Mozilla Firefox 0.7.1
Mozilla Firefox 0.7
Mozilla Firefox 0.6.1
Mozilla Firefox 0.6
Mozilla Firefox 0.5
Mozilla Firefox 0.4
Mozilla Firefox 0.3
Mozilla Firefox 0.2
Mozilla Firefox 0.1
Mozilla Thunderbird 2.0.0.15
Mozilla Thunderbird 2.0.0.16
Mozilla Thunderbird 2.0.0.17
Mozilla Thunderbird 2.0.0.18
Mozilla Thunderbird 2.0.0.19
Mozilla Thunderbird 2.0.0.20
Mozilla Thunderbird 2.0.0.21