Lucene search

K

NilsZDI-09-015

HistoryMar 30, 2009 - 12:00 a.m.

Mozilla Firefox XUL _moveToEdgeShift() Memory Corruption Vulnerability

2009-03-3000:00:00

Nils

www.zerodayinitiative.com

14

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.914 High

EPSS

Percentile

98.9%

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the XUL tree method _moveToEdgeShift(). In some cases this call will trigger garbage collection routines on in use objects which will result in a future call to a dangling pointer. This can be leveraged to execute arbitrary code under the context of the current user.

References

www.mozilla.org/security/announce/2009/mfsa2009-13.html

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.914 High

EPSS

Percentile

98.9%

Related for ZDI-09-015

checkpoint_advisories2 prion1 cve1 veracode1 seebug2 securityvulns3 ubuntucve1 mozilla1 openvas39 nessus18 fedora58 centos3 redhat2 oraclelinux2 debian2 ubuntu1 suse1 osv1 gentoo1