Lucene search

K
cvelistMitreCVELIST:CVE-2010-2766
HistorySep 09, 2010 - 6:00 p.m.

CVE-2010-2766

2010-09-0918:00:00
mitre
www.cve.org

8.9 High

AI Score

Confidence

High

0.667 Medium

EPSS

Percentile

98.0%

The normalizeDocument function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 does not properly handle the removal of DOM nodes during normalization, which might allow remote attackers to execute arbitrary code via vectors involving access to a deleted object.