Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24008

HistoryApr 10, 2020 - 12:43 a.m.

Denial Of Service (DoS)

2020-04-1000:43:50

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

13

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

Mozilla Firefox is vulnerable to Denial Of Service (DoS). It happens due to integer overflow flaws in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. d packages, including esc, totem, and yelp.

CPENameOperatorVersion
xulrunnereq1.9.2.4__9.el5
xulrunnereq1.9__1.el5
xulrunnereq1.9.0.7__1.el5
xulrunnereq1.9.0.4__1.el5
xulrunnereq1.9.0.10__1.el5
xulrunnereq1.9.0.5__1.el5_2
xulrunnereq1.9.0.9__1.el5
xulrunnereq1.9.0.16__2.el5_4
xulrunnereq1.9.0.1__1.el5
xulrunnereq1.9.0.18__1.el5_4

Rows per page:

1-10 of 4121

References

lists.fedoraproject.org/pipermail/package-announce/2010-June/043369.html

lists.fedoraproject.org/pipermail/package-announce/2010-June/043405.html

lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html

mozilla.com/en-US/firefox/3.6.4/releasenotes/

mozilla.com/en-US/firefox/3.6/releasenotes/

mozilla.org/security/known-vulnerabilities/firefox35.html

secunia.com/advisories/40323

secunia.com/advisories/40326

secunia.com/advisories/40401

secunia.com/advisories/40481

support.avaya.com/css/P8/documents/100091069

ubuntu.com/usn/usn-930-1

www.exploit-db.com/exploits/14949

www.mandriva.com/security/advisories?name=MDVSA-2010:125

www.mozilla.org/security/announce/2010/mfsa2010-30.html

www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.4

www.redhat.com/security/updates/classification/#critical

www.redhat.com/support/errata/RHSA-2010-0499.html

www.redhat.com/support/errata/RHSA-2010-0500.html

www.redhat.com/support/errata/RHSA-2010-0501.html

www.securityfocus.com/archive/1/511972/100/0/threaded

www.securityfocus.com/bid/41050

www.securityfocus.com/bid/41082

www.securitytracker.com/id?1024138

www.securitytracker.com/id?1024139

www.ubuntu.com/usn/usn-930-2

www.vupen.com/english/advisories/2010/1551

www.vupen.com/english/advisories/2010/1556

www.vupen.com/english/advisories/2010/1557

www.vupen.com/english/advisories/2010/1592

www.vupen.com/english/advisories/2010/1640

www.vupen.com/english/advisories/2010/1773

www.zerodayinitiative.com/advisories/ZDI-10-113

access.redhat.com/errata/RHSA-2010:0501

bugzilla.mozilla.org/show_bug.cgi?id=554255

exchange.xforce.ibmcloud.com/vulnerabilities/59666

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10885

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13287

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

Related for VERACODE:24008

packetstorm1 seebug1 exploitpack1 prion1 cve1 securityvulns3 mozilla1 zdi1 ubuntucve1 exploitdb1 nessus45 openvas83 redhat5 oraclelinux4 centos5 ubuntu7 debian3 osv1 fedora18 freebsd1 suse2 gentoo1