Intrusion Prevention



This indicates a possible exploit of a heap based buffer overflow vulnerability in Mozilla products.
This flaw is due to a heap overflow error when handling a specially crafted CSS "letter-spacing" property.

Affected Products

Mozilla Firefox versions prior
Mozilla Firefox versions prior to 1.0.8
Mozilla Suite versions prior to 1.7.13
SeaMonkey versions prior to 1.0.1
Thunderbird versions prior to
Thunderbird versions prior to 1.0.8


The execution of arbitrary code on the system.

Recommended Actions

Upgrade to Firefox or 1.0.8 :
Upgrade to Mozilla Suite 1.7.13 :
Upgrade to SeaMonkey 1.0.1 :
Upgrade to Thunderbird or 1.0.8 :

CVE References