DescriptionHeap-based buffer overflow in MSG_UnEscapeSearchUrl in nsNNTPProtocol.cpp for Mozilla 1.7.3 and earlier allows remote attackers to cause a denial of service (application crash) via an NNTP URL (news:) with a trailing '\' (backslash) character, which prevents a string from being NULL terminated.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2006:022, published Tue, 25 Apr 2006 15:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:07:34 2013
CVE page last modified: Fri Oct 7 12:45:29 2022