Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mozillaMozilla FoundationMFSA2009-47
HistorySep 09, 2009 - 12:00 a.m.

Crashes with evidence of memory corruption (rv:1.9.1.3/ 1.9.0.14) — Mozilla

2009-09-0900:00:00
Mozilla Foundation
www.mozilla.org
25

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.821 High

EPSS

Percentile

98.3%

JSON

Mozilla developers and community members identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code.

CPENameOperatorVersion
firefoxlt3.0.14
firefoxlt3.5.3

Related

securityvulns 3
fedora 41
nessus 39
openvas 69
freebsd 2
debian 2
osv 2
ubuntu 2
oraclelinux 2
centos 3
redhat 3
suse 1
ubuntucve 7
checkpoint_advisories 3
cve 7
prion 7
veracode 5
mozilla 1
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2009-47
2009-09-10 00:00:00
Mozilla Firefox multiple security vulnerabilities
2009-09-11 00:00:00
Mozilla Foundation Security Advisory 2010-07
2010-04-06 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: kazehakase-0.5.7-2.fc11
2009-09-11 23:33:35
[SECURITY] Fedora 11 Update: epiphany-2.26.3-4.fc11
2009-09-11 23:33:35
[SECURITY] Fedora 11 Update: xulrunner-1.9.1.3-1.fc11
2009-09-11 23:33:35
nessus
nessus
Fedora 11 : Miro-2.5.2-4.fc11 / blam-1.8.5-14.fc11 / chmsee-1.0.1-11.fc11 / eclipse-3.4.2-15.fc11 / etc (2009-9505)
2009-09-14 00:00:00
FreeBSD : mozilla firefox -- multiple vulnerabilities (922d2398-9e2d-11de-a998-0030843d3802)
2009-09-11 00:00:00
Mandriva Linux Security Advisory : firefox (MDVSA-2009:236)
2009-09-21 00:00:00
openvas
openvas
Fedora Core 11 FEDORA-2009-9505 (epiphany-extensions)
2009-09-15 00:00:00
Fedora Core 11 FEDORA-2009-9505 (epiphany-extensions)
2009-09-15 00:00:00
SLES11: Security update for Firefox
2009-10-11 00:00:00
freebsd
freebsd
mozilla firefox -- multiple vulnerabilities
2009-09-10 00:00:00
mozilla -- multiple vulnerabilities
2010-03-16 00:00:00
debian
debian
[SECURITY] [DSA 1885-1] New xulrunner packages fix several vulnerabilities
2009-09-14 17:05:35
[SECURITY] [DSA 2025-1] New icedove packages fix several vulnerabilities
2010-03-31 08:41:27
osv
osv
xulrunner - several vulnerabilities
2009-09-14 00:00:00
icedove - several vulnerabilities
2010-03-31 00:00:00
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2009-09-10 00:00:00
Thunderbird vulnerabilities
2010-03-18 00:00:00
oraclelinux
oraclelinux
firefox security update
2009-09-10 00:00:00
seamonkey security update
2009-09-10 00:00:00
centos
centos
firefox, nspr, xulrunner security update
2009-09-10 22:47:20
seamonkey security update
2009-09-10 22:51:03
seamonkey security update
2009-09-10 11:03:30
redhat
redhat
(RHSA-2009:1430) Critical: firefox security update
2009-09-09 00:00:00
(RHSA-2009:1431) Critical: seamonkey security update
2009-09-09 00:00:00
(RHSA-2009:1432) Critical: seamonkey security update
2009-09-09 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-10-20 17:59:46
ubuntucve
ubuntucve
CVE-2009-3073
2009-09-10 00:00:00
CVE-2009-3072
2009-09-10 00:00:00
CVE-2009-3071
2009-09-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox Top-level Script Object Offset Calculation Memory Corruption (CVE-2009-3073)
2010-05-12 00:00:00
Mozilla Firefox nsPropertyTable PropertyList Memory Corruption (CVE-2009-3070)
2010-05-12 00:00:00
Mozilla Multiple Products JavaScript String Replace Buffer Overflow (CVE-2009-3075)
2010-05-26 00:00:00
cve
cve
CVE-2009-3073
2009-09-10 21:30:00
CVE-2009-3071
2009-09-10 21:30:00
CVE-2009-3072
2009-09-10 21:30:00
prion
prion
Memory corruption
2009-09-10 21:30:00
Memory corruption
2009-09-10 21:30:00
Memory corruption
2009-09-10 21:30:00
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:37:58
Arbitrary Code Execution
2020-04-10 00:37:57
Arbitrary Code Execution
2020-04-10 00:37:59
mozilla
mozilla
Fixes for potentially exploitable crashes ported to the legacy branch — Mozilla
2010-03-16 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.821 High

EPSS

Percentile

98.3%

JSON
Related for MFSA2009-47
securityvulns3fedora41nessus39openvas69freebsd2debian2osv2ubuntu2oraclelinux2centos3redhat3suse1ubuntucve7checkpoint_advisories3cve7prion7veracode5mozilla1