FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-0776

This CVE name corresponds to:

Entered Topic
2007-02-24 mozilla -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-0776 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-0776
Phase Assigned(20070206)

Description

Heap-based buffer overflow in the _cairo_pen_init function in Mozilla Firefox 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to execute arbitrary code via a large stroke-width attribute in the clipPath element in an SVG file.

References

Source Reference
BUGTRAQ 20070226 rPSA-2007-0040-1 firefox
BUGTRAQ 20070303 rPSA-2007-0040-3 firefox thunderbird
CONFIRM http://www.mozilla.org/security/announce/2007/mfsa2007-01.html
MISC https://bugzilla.mozilla.org/show_bug.cgi?id=360645
CONFIRM https://issues.rpath.com/browse/RPL-1081
FEDORA FEDORA-2007-281
FEDORA FEDORA-2007-293
FEDORA FEDORA-2007-308
FEDORA FEDORA-2007-309
GENTOO GLSA-200703-04
GENTOO GLSA-200703-08
GENTOO GLSA-200703-18
HP HPSBUX02153
HP SSRT061181
MANDRIVA MDKSA-2007:052
SLACKWARE SSA:2007-066-03
SLACKWARE SSA:2007-066-04
SLACKWARE SSA:2007-066-05
SUSE SUSE-SA:2007:019
SUSE SUSE-SA:2007:022
UBUNTU USN-428-1
UBUNTU USN-431-1
CERT-VN VU#551436
BID 22694
VUPEN ADV-2007-0719
VUPEN ADV-2007-0718
VUPEN ADV-2008-0083
OSVDB 32113
SECTRACK 1017698
SECUNIA 24238
SECUNIA 24252
SECUNIA 24205
SECUNIA 24328
SECUNIA 24333
SECUNIA 24320
SECUNIA 24293
SECUNIA 24393
SECUNIA 24384
SECUNIA 24389
SECUNIA 24410
SECUNIA 24437
SECUNIA 24522
SECUNIA 24406
SECUNIA 24455
SECUNIA 24456
SECUNIA 24457
XF firefox-strokewidth-bo(32698)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.