CVE-2002-0593

Summary

CVE	CVE-2002-0593
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2002-06-18 04:00:00 UTC
Updated	2008-09-05 20:28:00 UTC
Description	Buffer overflow in Netscape 6 and Mozilla 1.0 RC1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long channel name in an IRC URI.

Risk And Classification

Problem Types: NVD-CWE-Other

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Mozilla	Mozilla	0.9.9	All	All	All
Application	Mozilla	Mozilla	1.0	rc1	All	All
Application	Mozilla	Mozilla	0.9.9	All	All	All
Application	Mozilla	Mozilla	1.0	rc1	All	All
Application	Netscape	Communicator	6.1	All	All	All
Application	Netscape	Communicator	6.1	All	All	All
Application	Netscape	Navigator	6.0	All	All	All
Application	Netscape	Navigator	6.01	All	All	All
Application	Netscape	Navigator	6.0	All	All	All
Application	Netscape	Navigator	6.01	All	All	All

References

Reference	Source	Link	Tags
20020430 RE: Reading local files in Netscape 6 and Mozilla (GM#001-NS)	BUGTRAQ	online.securityfocus.com	Vendor Advisory
Netscape/Mozilla IRC Buffer Overflow Vulnerability	BID	www.securityfocus.com	Exploit, Patch, Vendor Advisory
ISS X-Force Database: mozilla-netscape-irc-bo (8976): Mozilla and Netscape IRC:// channel request buffer overflow	XF	www.iss.net
Secunia - Advisories - RedHat updates for Mozilla	SECUNIA	secunia.com
Home - Conectiva	CONECTIVA	distro.conectiva.com.br
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.