10

CVE-2010-1121

Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote attackers to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interaction with garbage collection, as demonstrated by Nils during a Pwn2Own competition at CanSecWest 2010.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaFirefox Version3.6
MozillaFirefox Version3.6.1
MozillaFirefox Version3.6.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.77% 0.922
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043369.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043405.html
http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html
http://secunia.com/advisories/40326
Vendor Advisory
http://secunia.com/advisories/40401
Vendor Advisory
http://secunia.com/advisories/40481
Vendor Advisory
http://support.avaya.com/css/P8/documents/100091069
http://ubuntu.com/usn/usn-930-1
http://www.redhat.com/support/errata/RHSA-2010-0500.html
http://www.redhat.com/support/errata/RHSA-2010-0501.html
http://www.ubuntu.com/usn/usn-930-2
http://www.vupen.com/english/advisories/2010/1557
Vendor Advisory
http://www.vupen.com/english/advisories/2010/1592
http://www.vupen.com/english/advisories/2010/1640
Vendor Advisory
http://www.vupen.com/english/advisories/2010/1773
Vendor Advisory
http://dvlabs.tippingpoint.com/blog/2010/02/15/pwn2own-2010
http://news.cnet.com/8301-27080_3-20001126-245.html
http://secunia.com/advisories/40323
Vendor Advisory
http://twitter.com/thezdi/statuses/11005277222
http://www.mozilla.org/security/announce/2010/mfsa2010-25.html
Vendor Advisory
http://www.securitytracker.com/id?1023817
https://bugzilla.mozilla.org/show_bug.cgi?id=555109
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10924
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6844