10

CVE-2010-0159

EPSS 2.15%
Veröffentlicht 22.02.2010 13:00:02
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the nsBlockFrame::StealFrame function in layout/generic/nsBlockFrame.cpp, and unspecified other vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 34

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mozilla ≫ Firefox Version >= 3.0 < 3.0.18

Mozilla ≫ Firefox Version >= 3.5 < 3.5.8

Mozilla ≫ Seamonkey Version < 2.0.3

Mozilla ≫ Thunderbird Version < 3.0.2

Debian ≫ Debian Linux Version5.0

Canonical ≫ Ubuntu Linux Version8.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version8.10

Canonical ≫ Ubuntu Linux Version9.04

Canonical ≫ Ubuntu Linux Version9.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.15%	0.835

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://www.redhat.com/support/errata/RHSA-2010-0153.html

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2010-0154.html

Third Party Advisory

http://www.vupen.com/english/advisories/2010/0650

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035346.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035426.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036097.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036132.html

Third Party Advisory

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00001.html

Third Party Advisory

Mailing List

http://secunia.com/advisories/37242

Third Party Advisory

http://secunia.com/advisories/38770

Third Party Advisory

http://secunia.com/advisories/38772

Third Party Advisory

http://secunia.com/advisories/38847

Third Party Advisory

http://www.debian.org/security/2010/dsa-1999

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2010:042

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2010-0112.html

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2010-0113.html

Third Party Advisory

http://www.ubuntu.com/usn/USN-895-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-896-1

Third Party Advisory

http://www.vupen.com/english/advisories/2010/0405

Third Party Advisory

http://www.mozilla.org/security/announce/2010/mfsa2010-01.html

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=467005

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=501934

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=527567

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=528134

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=528300

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=530880

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=534082

Vendor Advisory

Issue Tracking

https://exchange.xforce.ibmcloud.com/vulnerabilities/56359

Third Party Advisory

VDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8485

Third Party Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9590

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2010-0159

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-0159

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-0159

EUVD