Name | CVE-2005-2114 |
Description | Mozilla 1.7.8, Firefox 1.0.4, Camino 0.8.4, Netscape 8.0.2, and K-Meleon 0.9, and possibly other products that use the Gecko engine, allow remote attackers to cause a denial of service (application crash) via JavaScript that repeatedly calls an empty function. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Debian Bugs | 318723 |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
mozilla | source | sarge | (not affected) | |||
mozilla | source | (unstable) | 2:1.7.10-1 | medium | 318723 |
cannot reproduce with firefox 1.0.5-1 and Sarge's Mozilla using POC exploits
[sarge] - mozilla <not-affected> (Unreproducible)