Published: 05/03/2009 Updated: 05/03/2009

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Mozilla Firefox 2.0.0.20 and previous versions allows remote malicious users to cause a denial of service (application crash) via nested calls to the window.print function, as demonstrated by a window.print(window.print()) in the onclick attribute of an INPUT element.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox 2.0.0.19
mozilla firefox 0.10
mozilla firefox 0.8
mozilla firefox 0.10.1
mozilla firefox 1.0.6
mozilla firefox 1.5
mozilla firefox 2.0.0.9
mozilla firefox 1.0.8
mozilla firefox 0.6.1
mozilla firefox 0.7
mozilla firefox 0.7.1
mozilla firefox 1.0
mozilla firefox 2.0.0.7
mozilla firefox 1.5.0.1
mozilla firefox 1.5.0.10
mozilla firefox 1.5.3
mozilla firefox 1.5.4
mozilla firefox 1.5.6
mozilla firefox 1.5.5
mozilla firefox 2.0.0.6
mozilla firefox 2.0.0.5
mozilla firefox 2.0.0.12
mozilla firefox 0.9.1
mozilla firefox 0.9.3
mozilla firefox 0.9.2
mozilla firefox 1.0.2
mozilla firefox 1.0.4
mozilla firefox 2.0_.10
mozilla firefox 2.0_.5
mozilla firefox 2.0.0.10
mozilla firefox 2.0.0.11
mozilla firefox 2.0.0.15
mozilla firefox 0.3
mozilla firefox 0.5
mozilla firefox 1.5.0.3
mozilla firefox 1.5.0.12
mozilla firefox 1.5.2
mozilla firefox 1.5.0.9
mozilla firefox 2.0
mozilla firefox 1.5.8
mozilla firefox 0.9_rc
mozilla firefox 2.0.0.2
mozilla firefox
mozilla firefox 1.0.1
mozilla firefox 0.9
mozilla firefox 1.0.3
mozilla firefox 2.0_.6
mozilla firefox 2.0_.7
mozilla firefox 2.0_.9
mozilla firefox 2.0_8
mozilla firefox 0.1
mozilla firefox 0.2
mozilla firefox 1.5.0.4
mozilla firefox 1.5.0.5
mozilla firefox 1.5.0.6
mozilla firefox 1.5.0.7
mozilla firefox 2.0.0.1
mozilla firefox 2.0.0.8
mozilla firefox 2.0.0.13
mozilla firefox 2.0.0.14
mozilla firefox 1.0.5
mozilla firefox 1.0.7
mozilla firefox 2.0_.1
mozilla firefox 2.0_.4
mozilla firefox 2.0.0.17
mozilla firefox 2.0.0.16
mozilla firefox 0.4
mozilla firefox 0.6
mozilla firefox 1.5.0.2
mozilla firefox 1.5.0.11
mozilla firefox 1.5.1
mozilla firefox 1.5.0.8
mozilla firefox 1.8
mozilla firefox 1.5.7
mozilla firefox 2.0.0.4
mozilla firefox 2.0.0.3
mozilla firefox 2.0.0.18

source: wwwsecurityfocuscom/bid/33969/info Mozilla Firefox is prone to a remote denial-of-service vulnerability Successful exploits can allow attackers to crash the affected browser, resulting in denial-of-service conditions Firefox 20020 is vulnerable; other versions may also be affected <HTML><TITLE>FireFox Print() ...

CWE-399 http://downloads.securityfocus.com/vulnerabilities/exploits/33969.html http://www.securityfocus.com/bid/33969 https://nvd.nist.gov https://www.exploit-db.com/exploits/32836/

CVE-2009-0821

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect