Lucene search
RootSSV:5073HistoryApr 21, 2009 - 12:00 a.m.
Mozilla Firefox XUL解析器开始标签拒绝服务漏洞
2009-04-2100:00:00
Root
www.seebug.org
17
0.835 High
EPSS
Percentile
98.5%
BUGTRAQ ID: 34522
CVE ID:CVE-2009-1232
CNCVE ID:CNCVE-20091232
Mozilla Firefox是一款开放源代码的WEB浏览器。
Mozilla Firefox处理包含大量start标签的XML页存在问题,可导致XML XUL解析器触发内存破坏,而导致应用程序崩溃。
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
目前没有解决方案提供:
<a href=“http://www.mozilla.org/” target=“_blank”>http://www.mozilla.org/</a>
可参考如下测试程序:
http://milw0rm.com/sploits/2009-Firefox-XUL-0day-PoC.rar
http://sebug.net/local/2009-exploits/0904-exploits/Firefox-XUL-0day-PoC.rar
Related
openvas
openvas
Firefox XUL Parsing Denial of Service Vulnerability - Windows
2009-04-08 00:00:00
Firefox XUL Parsing Denial of Service Vulnerability (Windows)
2009-04-08 00:00:00
Mozilla Firefox XUL Parsing Denial of Service Vulnerability - Linux
2009-04-08 00:00:00
ubuntucve
ubuntucve
CVE-2009-1232
2009-04-02 00:00:00
cvelist
cvelist
CVE-2009-1232
2009-04-02 17:00:00
CVE-2009-2668
2022-10-03 16:24:08
cve
cve
CVE-2009-1232
2009-04-02 17:30:00
CVE-2009-2668
2022-10-03 16:24:08
redhatcve
redhatcve
CVE-2009-1232
2015-10-30 10:17:40
prion
prion
Memory corruption
2009-04-02 17:30:00
Design/Logic Flaw
2009-08-05 19:30:00
nvd
nvd
CVE-2009-1232
2009-04-02 17:30:00
CVE-2009-2668
2009-08-05 19:30:01