FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- POP client heap overflow

Affected packages
mozilla < 1.7,2
linux-mozilla < 1.7
netscape7 < 7.2
thunderbird < 0.7

Details

VuXML ID c1d97a8b-05ed-11d9-b45d-000c41e2cdad
Discovery 2004-07-22
Entry 2004-09-14

zen-parse discovered a heap buffer overflow in Mozilla's POP client implementation. A malicious POP server could exploit this vulnerability to cause Mozilla to execute arbitrary code.

References

CVE Name CVE-2004-0757
URL http://bugzilla.mozilla.org/show_bug.cgi?id=157644
URL http://bugzilla.mozilla.org/show_bug.cgi?id=229374