CVE-2004-1614

CVE Database · CVE-2004-1614

CVE-2004-1614

· N/AModified

CVSS v3.1

N/A

EPSS

1.50%

Published

Oct 18, 2004

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Mozilla allows remote attackers to cause a denial of service (application crash from invalid memory access) via an "unusual combination of visual elements," including several large MARQUEE tags with large height parameters, as demonstrated by mangleme.

Affected Products (27)

mozilla · mozillavulnerable

· mozilla

References (10)

http://lcamtuf.coredump.cx/mangleme/gallery/

Vendor Advisory

http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/027709.html

ExploitVendor Advisory

http://marc.info/?l=bugtraq&m=109811406620511&w=2

http://securitytracker.com/id?1011810

http://www.securityfocus.com/bid/11440

ExploitVendor Advisory

http://lcamtuf.coredump.cx/mangleme/gallery/

Vendor Advisory

http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/027709.html

ExploitVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs