CVE-2004-1614

  • Last update: Apr 13, 2023

Description

Mozilla allows remote attackers to cause a denial of service (application crash from invalid memory access) via an "unusual combination of visual elements," including several large MARQUEE tags with large height parameters, as demonstrated by mangleme.

Software From Fixed in
mozilla / mozilla 1.0 1.0.x
mozilla / mozilla 1.0-rc1 1.0-rc1.x
mozilla / mozilla 1.0-rc2 1.0-rc2.x
mozilla / mozilla 1.0.1 1.0.1.x
mozilla / mozilla 1.0.2 1.0.2.x
mozilla / mozilla 1.1 1.1.x
mozilla / mozilla 1.1-alpha 1.1-alpha.x
mozilla / mozilla 1.1-beta 1.1-beta.x
mozilla / mozilla 1.2 1.2.x
mozilla / mozilla 1.2-alpha 1.2-alpha.x
mozilla / mozilla 1.2-beta 1.2-beta.x
mozilla / mozilla 1.2.1 1.2.1.x
mozilla / mozilla 1.3 1.3.x
mozilla / mozilla 1.3.1 1.3.1.x
mozilla / mozilla 1.4 1.4.x
mozilla / mozilla 1.4-alpha 1.4-alpha.x
mozilla / mozilla 1.4-beta 1.4-beta.x
mozilla / mozilla 1.4.1 1.4.1.x
mozilla / mozilla 1.4.2 1.4.2.x
mozilla / mozilla 1.5 1.5.x
mozilla / mozilla 1.6 1.6.x
mozilla / mozilla 1.7 1.7.x
mozilla / mozilla 1.7-rc3 1.7-rc3.x
mozilla / mozilla 1.7.1 1.7.1.x
mozilla / mozilla 1.7.2 1.7.2.x
mozilla / mozilla 1.7.3 1.7.3.x
mozilla / mozilla 1.8-alpha2 1.8-alpha2.x

Details

    • Severity: Medium
  • CVE: CVE-2004-1614
  • Published: Oct 18, 2004
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P