10

CVE-2009-3380

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaFirefox Version3.0.1
MozillaFirefox Version3.0.2
MozillaFirefox Version3.0.3
MozillaFirefox Version3.0.4
MozillaFirefox Version3.0.5
MozillaFirefox Version3.0.6
MozillaFirefox Version3.0.7
MozillaFirefox Version3.0.8
MozillaFirefox Version3.0.9
MozillaFirefox Version3.0.10
MozillaFirefox Version3.0.11
MozillaFirefox Version3.0.12
MozillaFirefox Version3.0.13
MozillaFirefox Version3.0.14
MozillaFirefox Version3.5.1
MozillaFirefox Version3.5.2
MozillaFirefox Version3.5.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.46% 0.917
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1
http://www.mandriva.com/security/advisories?name=MDVSA-2009:294
http://www.redhat.com/support/errata/RHSA-2010-0153.html
http://www.redhat.com/support/errata/RHSA-2010-0154.html
http://www.vupen.com/english/advisories/2009/3334
http://www.vupen.com/english/advisories/2010/0650
http://www.mozilla.org/security/announce/2009/mfsa2009-64.html
Patch
Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=454872
https://bugzilla.mozilla.org/show_bug.cgi?id=489925
https://bugzilla.mozilla.org/show_bug.cgi?id=497013
https://bugzilla.mozilla.org/show_bug.cgi?id=508927
https://bugzilla.mozilla.org/show_bug.cgi?id=509244
https://bugzilla.mozilla.org/show_bug.cgi?id=509602
https://bugzilla.mozilla.org/show_bug.cgi?id=514776
https://bugzilla.mozilla.org/show_bug.cgi?id=522030
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6580
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9463