Lucene search

[email protected]CVE-2010-1988

HistoryMay 20, 2010 - 5:30 p.m.

CVE-2010-1988

2010-05-2017:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

mozilla

firefox

windows xp

vulnerability

cve-2010-1988

nvd

null pointer dereference

denial of service

9.8 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.148 Low

EPSS

Percentile

95.7%

JSON

Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via JavaScript code that performs certain string concatenation and substring operations, a different vulnerability than CVE-2009-1571.

CPENameOperatorVersion
mozilla:firefoxmozilla firefoxeq3.6.3

CPE	Name	Operator	Version
mozilla:firefox	mozilla firefox	eq	3.6.3

References

osvdb.org/64789

www.exploit-db.com/exploits/12678

www.securityfocus.com/archive/1/511329/100/0/threaded

www.x90c.org/advisories/firefox_3.6.3_crash_advisory.txt

exchange.xforce.ibmcloud.com/vulnerabilities/58763

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12050

9.8 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.148 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2010-1988

prion4 seebug2 openvas105 nessus31 ubuntucve1 cve3 mozilla1 veracode1 securityvulns3 fedora34 redhat2 centos2 oraclelinux2 osv1 ubuntu2 freebsd1 suse1 debian3