New Search

The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17 and OpenJDK allows remote attackers to determine the existence of local files via vectors related to handling of zoneinfo (aka tz) files aka Bug Id 6824265.

oval:org.mitre.oval:def:11377

Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2 Mozilla before to 1.7.6 and Thunderbird before 1.0.2 and possibly other applications that use the same library allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 3
  • CentOS Linux 4
  • Oracle Linux 4
  • CentOS Linux 3
  • Red Hat Enterprise Linux 4
Class:
vulnerability
Reference(s):
  • CVE-2005-0399
Product(s):