Web.Browser.Non-ASCII.Hostname.Heap.Overflow
Description
This indicates an attempt to exploit a heap-based buffer overflow vulnerability in Mozilla products.
The vulnerability is caused by a failure of the application to properly check user-supplied data. It may allow a remote attacker to execute arbitrary code via a malicious URI containing a non-ASCII hostname.
Affected Products
Netscape Navigator 7.2
Netscape Navigator 7.1
Netscape Navigator 7.0.2
Netscape Navigator 7.0
Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 0.7.2
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 0.7
Mozilla Thunderbird 0.6
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Firefox 0.8
Mozilla Browser 1.7.2
Mozilla Browser 1.7.1
Mozilla Browser 1.7 rc3
Mozilla Browser 1.7
Impact
Arbitrary code execution
Denial of service
Recommended Actions
Upgrade the web browser to the latest version.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |