Gotfault Security - Advisory #05 - 27/10/06

vendor:

Firefox

by:

Gotfault Security

N/A

CVSS

N/A

NULL Pointer Deference

476

CWE

Product Name: Firefox

Affected Version From: 1.5.0.7

Affected Version To: 2.0

Patch Exists: YES

Related CWE: N/A

CPE: a:mozilla:firefox

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2006

Gotfault Security – Advisory #05 – 27/10/06

Mozilla Firefox is prone to a D.O.S within its javascript Range object. In a special condition, a NULL Pointer Deference occur and Firefox crashes. When a DOCUMENT_TYPE_NODE (<!DOCTYPE...) element is passed to selectNode method and trigger a NULL Pointer deference when calling createContextualFragment method.

Mitigation:

Upgrade to the latest version of Mozilla Firefox.

Source

Gotfault Security – Advisory #05 – 27/10/06

Mitigation:

Exploit-DB raw data: