HTTP: Mozilla Gif89A:Extension
This signature detects attempts to exploit a non-supported extension in the GIF decoding engine. Attackers can create a maliciously crafted GIF file exploiting this extension. A successful exploit can allow an attacker to create a denial of service (DoS) or execute arbitrary scripts with user privileges.
Extended Description
Multiple Mozilla products are affected by a remote heap-overflow vulnerability. This issue affects the GIF image processing library used by Mozilla Firefox, Mozilla Browser, and Mozilla Thunderbird Mail client. A successful attack can result in arbitrary code execution and in unauthorized access to the affected computer. Arbitrary code execution will take place in the context of a user running a vulnerable application. *Update: K-Meleon, which is based on the Mozilla Gecko-code base, is also prone to this issue.
Affected Products
Mozilla browser
References
BugTraq: 12881
CVE: CVE-2005-0399
URL: http://www.mozilla.org/security/announce/mfsa2005-30.html
Short Name
HTTP:STC:MOZILLA:GIF89A-EXT
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2005-0399 Gif89A:Extension Mozilla bid:12881
Release Date
03/30/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Red_hat
Sco
Suse
Gentoo
K-meleon
Hp
Mozilla
Sgi
Netscape
CVSS Score
5.1