2009-07-22 20:30:00 2018-10-30 17:25:58

Multiple integer overflows in the (1) PL_Base64Decode and (2) PL_Base64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors that trigger buffer overflows.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE
Mozilla Thunderbird 2.0.0.14 Mozilla Thunderbird 2.0.0.13 Mozilla Thunderbird 2.0.0.12 Mozilla Thunderbird 2.0.0.11 Mozilla Thunderbird 2.0.0.9 Mozilla Thunderbird 2.0.0.8 Mozilla Thunderbird 2.0.0.7 Mozilla Thunderbird 2.0.0.6 Mozilla Thunderbird 2.0.0.5 Mozilla Thunderbird 2.0.0.4 Mozilla Thunderbird 2.0.0.3 Mozilla Thunderbird 2.0.0.2 Mozilla Thunderbird 2.0.0.1 Mozilla Thunderbird 2.0.0.0 Mozilla Firefox 3.0.10 Mozilla Firefox 3.0.9 Mozilla Firefox 3.0.8 Mozilla Firefox 3.0.7 Mozilla Firefox 3.0.6 Mozilla Firefox 3.0.5 Mozilla Firefox 3.0.4 Mozilla Firefox 3.0.3 Mozilla Firefox 3.0.2 Mozilla Firefox 3.0.1 Mozilla Firefox 3.0 Beta5 (not an official CPE) Mozilla Firefox 3.0 Beta2 (not an official CPE) Mozilla Firefox 3.0 Alpha (not an official CPE) Mozilla Firefox 3.0 Mozilla Firefox 2.0 8 (not an official CPE) Mozilla Firefox 2.0 .10 (not an official CPE) Mozilla Firefox 2.0 .9 (not an official CPE) Mozilla Firefox 2.0 .7 (not an official CPE) Mozilla Firefox 2.0 .6 (not an official CPE) Mozilla Firefox 2.0 .5 (not an official CPE) Mozilla Firefox 2.0 .4 (not an official CPE) Mozilla Firefox 2.0 .1 (not an official CPE) Mozilla Firefox 2.0.0.21 (not an official CPE) Mozilla Firefox 2.0.0.20 Mozilla Firefox 2.0.0.19 Mozilla Firefox 2.0.0.18 Mozilla Firefox 2.0.0.17 Mozilla Firefox 2.0.0.16 Mozilla Firefox 2.0.0.15 Mozilla Firefox 2.0.0.14 Mozilla Firefox 2.0.0.13 Mozilla Firefox 2.0.0.12 Mozilla Firefox 2.0.0.11 Mozilla Firefox 2.0.0.10 Mozilla Firefox 2.0.0.9 Mozilla Firefox 2.0.0.8 Mozilla Firefox 2.0.0.7 Mozilla Firefox 2.0.0.6 Mozilla Firefox 2.0.0.5 Mozilla Firefox 2.0.0.4 Mozilla Firefox 2.0.0.3 Mozilla Firefox 2.0.0.2 Mozilla Firefox 2.0.0.1 Mozilla Firefox 2.0 Rc3 (not an official CPE) Mozilla Firefox 2.0 Rc2 (not an official CPE) Mozilla Firefox 2.0 Beta 1 (not an official CPE) Mozilla Firefox 2.0 Beta1 (not an official CPE) Mozilla Firefox 2.0 Mozilla Firefox 1.8 Mozilla Firefox 1.5.8 Mozilla Firefox 1.5.7 Mozilla Firefox 1.5.6 Mozilla Firefox 1.5.5 Mozilla Firefox 1.5.4 Mozilla Firefox 1.5.3 Mozilla Firefox 1.5.2 Mozilla Firefox 1.5.1 Mozilla Firefox 1.5.0.12 Mozilla Firefox 1.5.0.10 Mozilla Firefox 1.5.0.11 Mozilla Firefox 1.5.0.9 Mozilla Firefox 1.5.0.8 Mozilla Firefox 1.5.0.7 Mozilla Firefox 1.5.0.6 Mozilla Firefox 1.5.0.5 Mozilla Firefox 1.5.0.4 Mozilla Firefox 1.5.0.3 Mozilla Firefox 1.5.0.2 Mozilla Firefox 1.5.0.1 Mozilla Firefox 1.5 Beta 2 Mozilla Firefox 1.5 Beta 1 Mozilla Firefox 1.5 Mozilla Firefox 1.4.1 Mozilla Firefox 1.0.8 Mozilla Firefox 1.0.7 Mozilla Firefox 1.0.6 Linux (not an official CPE) Mozilla Firefox 1.0.6 Mozilla Firefox 1.0.5 Mozilla Firefox 1.0.4 Mozilla Firefox 1.0.3 Mozilla Firefox 1.0.2 Mozilla Firefox 1.0.1 Mozilla Firefox 1.0 Preview Release Mozilla Firefox 1.0 Mozilla Firefox 0.10.1 Mozilla Firefox 0.10 Mozilla Firefox 0.9 rc (not an official CPE) Mozilla Firefox 0.9.3 Mozilla Firefox 0.9.2 Mozilla Firefox 0.9.1 Mozilla Firefox 0.9 rc Mozilla Firefox 0.9 Mozilla Firefox 0.8 Mozilla Firefox 0.7.1 Mozilla Firefox 0.7 Mozilla Firefox 0.6.1 Mozilla Firefox 0.6 Mozilla Firefox 0.5 Mozilla Firefox 0.4 Mozilla Firefox 0.3 Mozilla Firefox 0.2 Mozilla Firefox 0.1 Mozilla Thunderbird 2.0.0.15 Mozilla Thunderbird 2.0.0.16 Mozilla Thunderbird 2.0.0.17 Mozilla Thunderbird 2.0.0.18 Mozilla Thunderbird 2.0.0.19 Mozilla Thunderbird 2.0.0.20 Mozilla Thunderbird 2.0.0.21