10

CVE-2010-0159

EPSS 2.15%
Published 22.02.2010 13:00:02
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the nsBlockFrame::StealFrame function in layout/generic/nsBlockFrame.cpp, and unspecified other vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 34

Data is provided by the National Vulnerability Database (NVD)

Mozilla ≫ Firefox Version >= 3.0 < 3.0.18

Mozilla ≫ Firefox Version >= 3.5 < 3.5.8

Mozilla ≫ Seamonkey Version < 2.0.3

Mozilla ≫ Thunderbird Version < 3.0.2

Debian ≫ Debian Linux Version5.0

Canonical ≫ Ubuntu Linux Version8.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version8.10

Canonical ≫ Ubuntu Linux Version9.04

Canonical ≫ Ubuntu Linux Version9.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.15%	0.835

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://www.redhat.com/support/errata/RHSA-2010-0153.html

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2010-0154.html

Third Party Advisory

http://www.vupen.com/english/advisories/2010/0650

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035346.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035426.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036097.html

Third Party Advisory

Mailing List

http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036132.html

Third Party Advisory

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00001.html

Third Party Advisory

Mailing List

http://secunia.com/advisories/37242

Third Party Advisory

http://secunia.com/advisories/38770

Third Party Advisory

http://secunia.com/advisories/38772

Third Party Advisory

http://secunia.com/advisories/38847

Third Party Advisory

http://www.debian.org/security/2010/dsa-1999

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2010:042

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2010-0112.html

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2010-0113.html

Third Party Advisory

http://www.ubuntu.com/usn/USN-895-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-896-1

Third Party Advisory

http://www.vupen.com/english/advisories/2010/0405

Third Party Advisory

http://www.mozilla.org/security/announce/2010/mfsa2010-01.html

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=467005

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=501934

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=527567

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=528134

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=528300

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=530880

Vendor Advisory

Issue Tracking

https://bugzilla.mozilla.org/show_bug.cgi?id=534082

Vendor Advisory

Issue Tracking

https://exchange.xforce.ibmcloud.com/vulnerabilities/56359

Third Party Advisory

VDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8485

Third Party Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9590

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2010-0159

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-0159

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-0159

EUVD