5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.604 Medium
EPSS
Percentile
97.7%
Mozilla Project reports:
MFSA 2009-38: Data corruption with SOCKS5 reply containing DNS name
longer than 15 characters
MFSA 2009-42: Compromise of SSL-protected communication
MFSA 2009-43: Heap overflow in certificate regexp parsing
MFSA 2009-44: Location bar and SSL indicator spoofing via window.open()
on invalid URL
MFSA 2009-45: Crashes with evidence of memory corruption
(rv:1.9.1.2/1.9.0.13)
MFSA 2009-46: Chrome privilege escalation due to incorrectly cached
wrapper
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | firefox | < 3.*,1 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox | < 3.*,1 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox-devel | < 3.5.2 | UNKNOWN |
FreeBSD | any | noarch | seamonkey | < 1.1.18 | UNKNOWN |
FreeBSD | any | noarch | linux-seamonkey | < 1.1.18 | UNKNOWN |
FreeBSD | any | noarch | thunderbird | < 2.0.0.23 | UNKNOWN |
FreeBSD | any | noarch | linux-thunderbird | < 2.0.0.23 | UNKNOWN |
www.mozilla.org/security/announce/2009/mfsa2009-38.html
www.mozilla.org/security/announce/2009/mfsa2009-42.html
www.mozilla.org/security/announce/2009/mfsa2009-43.html
www.mozilla.org/security/announce/2009/mfsa2009-44.html
www.mozilla.org/security/announce/2009/mfsa2009-45.html
www.mozilla.org/security/announce/2009/mfsa2009-46.html
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.604 Medium
EPSS
Percentile
97.7%