CVE-2005-0399 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-0399 Interim 1 3 2021-06-09T08:33:14Z current 2021-05-30T12:32:01Z 2021-06-09T08:33:14Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-0399 Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/opensuse-security-announce/2006-04/msg00008.html E-Mail link for SUSE-SA:2006:022 https://www.suse.com/support/security/rating/ SUSE Security Ratings Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2 block and buffer size. CVE-2005-0399 important 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P