Lucene search
HistoryAug 24, 2009 - 3:30 p.m.
CVE-2009-2953
mozilla firefox
cpu consumption
denial of service
vulnerability
cve-2009-2953
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
Low
0.026 Low
EPSS
Percentile
90.3%
Mozilla Firefox 3.0.6 through 3.0.13, and 3.5.x, allows remote attackers to cause a denial of service (CPU consumption) via JavaScript code with a long string value for the hash property (aka location.hash), a related issue to CVE-2008-5715.
Affected configurations
Node
mozillafirefoxMatch3.0.6
ORmozillafirefoxMatch3.0.7
ORmozillafirefoxMatch3.0.8
ORmozillafirefoxMatch3.0.9
ORmozillafirefoxMatch3.0.10
ORmozillafirefoxMatch3.0.11
ORmozillafirefoxMatch3.0.12
ORmozillafirefoxMatch3.0.13
ORmozillafirefoxMatch3.5
ORmozillafirefoxMatch3.5.1
ORmozillafirefoxMatch3.5.2
ORmozillafirefoxMatch3.5.3
ORmozillafirefoxMatch3.5.4
Related
openvas
openvas
Mozilla Firefox location.hash Remote DoS Vulnerability
2008-12-29 00:00:00
Mozilla Firefox location.hash Remote DoS Vulnerability
2008-12-29 00:00:00
ubuntucve
ubuntucve
CVE-2009-2953
2009-08-24 00:00:00
CVE-2008-5715
2008-12-24 00:00:00
prion
prion
Design/Logic Flaw
2009-08-24 15:30:00
Code injection
2008-12-24 18:29:00
Design/Logic Flaw
2009-08-24 15:30:00
nvd
nvd
cvelist
cvelist
seebug
seebug
Mozilla Firefox location.hashθΏη¨ζη»ζε‘ζΌζ΄
2008-12-30 00:00:00
cve
cve
redhatcve
redhatcve
CVE-2008-5715
2015-10-30 09:18:19
debiancve
debiancve
CVE-2009-2955
2009-08-24 15:30:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
Low
0.026 Low
EPSS
Percentile
90.3%
Related for CVE-2009-2953