Published: 04/08/2009 Updated: 04/09/2009

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The browser engine in Mozilla Firefox 3.5.x prior to 3.5.2 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the TraceRecorder::snapshot function in js/src/jstracer.cpp, and unspecified other vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox 3.0.7
mozilla firefox 3.0.5
mozilla firefox 3.0.11
mozilla firefox 3.0.3
mozilla firefox 3.0.1
mozilla firefox 3.0.6
mozilla firefox 3.0.4
mozilla firefox 3.5.1
mozilla firefox 3.0.10
mozilla firefox 3.0.2
mozilla firefox

Mozilla Foundation Security Advisory 2009-45 Crashes with evidence of memory corruption (rv:1912/19013) Announced August 3, 2009 Reporter Mozilla developers and community Impact Critical Products Firefox Fixed in ...

CWE-119 https://bugzilla.mozilla.org/show_bug.cgi?id=503144 http://www.mozilla.org/security/announce/2009/mfsa2009-45.html https://bugzilla.mozilla.org/show_bug.cgi?id=502832 http://www.vupen.com/english/advisories/2009/2142 https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00261.html http://secunia.com/advisories/36126 https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00198.html http://www.securityfocus.com/bid/35927 http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1 https://nvd.nist.gov https://www.mozilla.org/en-US/security/advisories/mfsa2009-45/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-2662

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect