Intrusion Prevention

Mozilla.Firefox.JavaScript.Crash

Description

This indicates an attack attempt against a denial-of-service vulnerability in Mozilla Firefox.
The vulnerability is caused by an error when the vulnerable software handles a malicious Javascript. It allows a remote attacker to crash the software via sending a crafted web page.

Affected Products

Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13.

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Upgrade to the latest version.

CVE References

CVE-2008-5018 CVE-2008-5017