Lucene search

MitreCVE-2009-2044

HistoryJun 12, 2009 - 9:30 p.m.

CVE-2009-2044

2009-06-1221:30:00

CWE-20

mitre

web.nvd.nist.gov

cve-2009-2044

mozilla firefox

dos

linux

gif

uri

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.4

Confidence

High

EPSS

0.013

Percentile

86.0%

JSON

Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to cause a denial of service (application crash) via a URI for a large GIF image in the BACKGROUND attribute of a BODY element.

Affected configurations

Nvd

Node

mozillafirefoxRange≤3.0.10

AND

linuxlinux_kernelMatch-

VendorProductVersionCPE
mozillafirefoxcpe:/a:mozilla:firefox::::

Vendor	Product	Version	CPE
mozilla	firefox		cpe:/a:mozilla:firefox::::

References

e-rdc.org/v1/news.php?readmore=137

www.securityfocus.com/archive/1/504214

www.securityfocus.com/bid/35280

bugzilla.mozilla.org/show_bug.cgi?id=496265

exchange.xforce.ibmcloud.com/vulnerabilities/51037

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.4

Confidence

High

EPSS

0.013

Percentile

86.0%

JSON

Related for CVE-2009-2044