CVE-2005-0255

Published: May 2, 2005Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

String handling functions in Mozilla 1.7.3, Firefox 1.0, and Thunderbird before 1.0.2, such as the nsTSubstring_CharT::Replace function, do not properly check the return values of other functions that resize the string, which allows remote attackers to cause a denial of service and possibly execute arbitrary code by forcing an out-of-memory state that causes a reallocation to fail and return a pointer to a fixed address, which leads to heap corruption.

Affected (12)

Products: Mozilla: Firefox, Mozilla, Thunderbird

3 products

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Mozilla Firefox	Version 1.0
Mozilla Mozilla	Version 1.7.3
Mozilla Thunderbird	Version 0.1
Mozilla Thunderbird	Version 0.2
Mozilla Thunderbird	Version 0.3
Mozilla Thunderbird	Version 0.4
Mozilla Thunderbird	Version 0.5
Mozilla Thunderbird	Version 0.6
Mozilla Thunderbird	Version 0.7
Mozilla Thunderbird	Version 0.8
Mozilla Thunderbird	Version 0.9
Mozilla Thunderbird	Version 1.0

References (26)

http://secunia.com/advisories/19823

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200503-10.xml

Source: cve@mitre.org

PatchVendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200503-30.xml

Source: cve@mitre.org

PatchVendor Advisory

http://www.idefense.com/application/poi/display?id=200&type=vulnerabilities

Source: cve@mitre.org

PatchVendor Advisory

http://www.mozilla.org/security/announce/mfsa2005-18.html

Source: cve@mitre.org

Vendor Advisory

http://www.novell.com/linux/security/advisories/2005_16_mozilla_firefox.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.novell.com/linux/security/advisories/2006_04_25.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-176.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-277.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-337.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/12659

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100040

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9111

Source: cve@mitre.org

http://secunia.com/advisories/19823

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.gentoo.org/security/en/glsa/glsa-200503-10.xml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200503-30.xml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.idefense.com/application/poi/display?id=200&type=vulnerabilities

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.mozilla.org/security/announce/mfsa2005-18.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.novell.com/linux/security/advisories/2005_16_mozilla_firefox.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.novell.com/linux/security/advisories/2006_04_25.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2005-176.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2005-277.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-337.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/12659

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100040

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9111

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.