CVE-2008-0420

Mozilla information disclosure flaw

Severity Score

9.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 does not properly perform certain calculations related to the mColors table, which allows remote attackers to read portions of memory uninitialized via a crafted 8-bit bitmap (BMP) file that triggers an out-of-bounds read within the heap, as demonstrated using a CANVAS element; or cause a denial of service (application crash) via a crafted 8-bit bitmap file that triggers an out-of-bounds read. NOTE: the initial public reports stated that this affected Firefox in Ubuntu 6.06 through 7.10.

El archivo modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp en Mozilla Firefox versiones anteriores a 2.0.0.12, Thunderbird versiones anteriores a 2.0.0.12, y SeaMonkey versiones anteriores a 1.1.8, no realiza apropiadamente ciertos cálculos relacionados con la tabla mColors, lo que permite a los atacantes remotos leer partes de memoria no inicializadas por medio de un archivo de mapa de bits de 8 bits (BMP) diseñado que desencadena una lectura fuera de límites dentro de la pila, como es demostrado mediante el uso de un elemento CANVAS; o al causar una denegación de servicio (bloqueo de la aplicación) por medio de un archivo de mapa de bits de 8 bits diseñado que desencadena una lectura fuera de límites. NOTA: los reportes públicos iniciales indicaron que esto afectó a Firefox en Ubuntu versiones 6.06 hasta 7.10.

*Credits: N/A

CVSS Scores

NISTv2 9.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2008-01-23 CVE Reserved
2008-02-08 CVE Published
2024-07-16 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CAPEC

References (28)

URL	Tag	Source
http://browser.netscape.com/releasenotes	X_refsource_confirm
http://securitytracker.com/id?1019434	Vdb Entry
http://www.mozilla.org/security/announce/2008/mfsa2008-07.html	X_refsource_confirm
http://www.securityfocus.com/archive/1/488264/100/0/threaded	Mailing List
http://www.securityfocus.com/bid/27826	Vdb Entry
https://bugzilla.mozilla.org/show_bug.cgi?id=408076	X_refsource_confirm
https://exchange.xforce.ibmcloud.com/vulnerabilities/40491	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/40606	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10119	Signature

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/28758	2018-10-15
http://secunia.com/advisories/28839	2018-10-15
http://secunia.com/advisories/29049	2018-10-15
http://secunia.com/advisories/29098	2018-10-15
http://secunia.com/advisories/29167	2018-10-15
http://secunia.com/advisories/30327	2018-10-15
http://secunia.com/advisories/30620	2018-10-15
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1	2018-10-15
http://www.gentoo.org/security/en/glsa/glsa-200805-18.xml	2018-10-15
http://www.mandriva.com/security/advisories?name=MDVSA-2008:048	2018-10-15
http://www.ubuntu.com/usn/usn-582-1	2018-10-15
http://www.ubuntu.com/usn/usn-582-2	2018-10-15
http://www.vupen.com/english/advisories/2008/0627/references	2018-10-15
http://www.vupen.com/english/advisories/2008/1793/references	2018-10-15
https://usn.ubuntu.com/576-1	2018-10-15
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00905.html	2018-10-15
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00946.html	2018-10-15
https://access.redhat.com/security/cve/CVE-2008-0420	2008-02-08
https://bugzilla.redhat.com/show_bug.cgi?id=431750	2008-02-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				<= 2.0.0.11 Search vendor "Mozilla" for product "Firefox" and version " <= 2.0.0.11"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.1 Search vendor "Mozilla" for product "Firefox" and version "0.1"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.2 Search vendor "Mozilla" for product "Firefox" and version "0.2"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.3 Search vendor "Mozilla" for product "Firefox" and version "0.3"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.4 Search vendor "Mozilla" for product "Firefox" and version "0.4"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.5 Search vendor "Mozilla" for product "Firefox" and version "0.5"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.6 Search vendor "Mozilla" for product "Firefox" and version "0.6"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.6.1 Search vendor "Mozilla" for product "Firefox" and version "0.6.1"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.7 Search vendor "Mozilla" for product "Firefox" and version "0.7"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.7.1 Search vendor "Mozilla" for product "Firefox" and version "0.7.1"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.8 Search vendor "Mozilla" for product "Firefox" and version "0.8"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.9 Search vendor "Mozilla" for product "Firefox" and version "0.9"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.9.1 Search vendor "Mozilla" for product "Firefox" and version "0.9.1"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.9.2 Search vendor "Mozilla" for product "Firefox" and version "0.9.2"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				0.9.3 Search vendor "Mozilla" for product "Firefox" and version "0.9.3"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.0 Search vendor "Mozilla" for product "Firefox" and version "1.0"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.0 Search vendor "Mozilla" for product "Firefox" and version "1.0"		preview_release		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.0.3 Search vendor "Mozilla" for product "Firefox" and version "1.0.3"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.0.5 Search vendor "Mozilla" for product "Firefox" and version "1.0.5"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.0.8 Search vendor "Mozilla" for product "Firefox" and version "1.0.8"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5 Search vendor "Mozilla" for product "Firefox" and version "1.5"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.1 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.1"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.2 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.2"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.4 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.4"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.6 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.6"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.7 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.7"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.9 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.9"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.10 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.10"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				1.5.0.12 Search vendor "Mozilla" for product "Firefox" and version "1.5.0.12"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				2.0 Search vendor "Mozilla" for product "Firefox" and version "2.0"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				2.0.0.1 Search vendor "Mozilla" for product "Firefox" and version "2.0.0.1"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				2.0.0.2 Search vendor "Mozilla" for product "Firefox" and version "2.0.0.2"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				2.0.0.7 Search vendor "Mozilla" for product "Firefox" and version "2.0.0.7"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				2.0.0.8 Search vendor "Mozilla" for product "Firefox" and version "2.0.0.8"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				2.0.0.9 Search vendor "Mozilla" for product "Firefox" and version "2.0.0.9"		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				2.0.0.10 Search vendor "Mozilla" for product "Firefox" and version "2.0.0.10"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				<= 1.1.7 Search vendor "Mozilla" for product "Seamonkey" and version " <= 1.1.7"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0 Search vendor "Mozilla" for product "Seamonkey" and version "1.0"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0 Search vendor "Mozilla" for product "Seamonkey" and version "1.0"		alpha		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0 Search vendor "Mozilla" for product "Seamonkey" and version "1.0"		beta		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.1 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.1"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.2 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.2"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.3 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.3"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.5 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.5"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.6 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.6"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.7 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.7"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.8 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.8"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.0.9 Search vendor "Mozilla" for product "Seamonkey" and version "1.0.9"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.1 Search vendor "Mozilla" for product "Seamonkey" and version "1.1"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.1 Search vendor "Mozilla" for product "Seamonkey" and version "1.1"		alpha		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.1 Search vendor "Mozilla" for product "Seamonkey" and version "1.1"		beta		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.1.1 Search vendor "Mozilla" for product "Seamonkey" and version "1.1.1"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.1.2 Search vendor "Mozilla" for product "Seamonkey" and version "1.1.2"		-		Affected
Mozilla Search vendor "Mozilla"		Seamonkey Search vendor "Mozilla" for product "Seamonkey"				1.1.6 Search vendor "Mozilla" for product "Seamonkey" and version "1.1.6"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				<= 2.0.0.11 Search vendor "Mozilla" for product "Thunderbird" and version " <= 2.0.0.11"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				0.1 Search vendor "Mozilla" for product "Thunderbird" and version "0.1"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				0.5 Search vendor "Mozilla" for product "Thunderbird" and version "0.5"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				0.6 Search vendor "Mozilla" for product "Thunderbird" and version "0.6"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				0.7 Search vendor "Mozilla" for product "Thunderbird" and version "0.7"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				0.8 Search vendor "Mozilla" for product "Thunderbird" and version "0.8"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				0.9 Search vendor "Mozilla" for product "Thunderbird" and version "0.9"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.0 Search vendor "Mozilla" for product "Thunderbird" and version "1.0"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.0.2 Search vendor "Mozilla" for product "Thunderbird" and version "1.0.2"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.0.5 Search vendor "Mozilla" for product "Thunderbird" and version "1.0.5"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.0.6 Search vendor "Mozilla" for product "Thunderbird" and version "1.0.6"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.0.8 Search vendor "Mozilla" for product "Thunderbird" and version "1.0.8"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5 Search vendor "Mozilla" for product "Thunderbird" and version "1.5"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.2 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.2"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.4 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.4"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.5 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.5"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.7 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.7"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.9 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.9"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.12 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.12"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.13 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.13"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				1.5.0.14 Search vendor "Mozilla" for product "Thunderbird" and version "1.5.0.14"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				2.0.0.0 Search vendor "Mozilla" for product "Thunderbird" and version "2.0.0.0"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				2.0.0.4 Search vendor "Mozilla" for product "Thunderbird" and version "2.0.0.4"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				2.0.0.5 Search vendor "Mozilla" for product "Thunderbird" and version "2.0.0.5"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				2.0.0.6 Search vendor "Mozilla" for product "Thunderbird" and version "2.0.0.6"		-		Affected
Mozilla Search vendor "Mozilla"		Thunderbird Search vendor "Mozilla" for product "Thunderbird"				2.0.0.9 Search vendor "Mozilla" for product "Thunderbird" and version "2.0.0.9"		-		Affected