Lucene search

RedhatCVE-2009-3075

HistorySep 10, 2009 - 9:30 p.m.

CVE-2009-3075

2009-09-1021:30:01

redhat

web.nvd.nist.gov

cve-2009-3075

mozilla

firefox

javascript engine

denial of service

arbitrary code

vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.821

Percentile

98.4%

JSON

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.2, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to use of mutable strings in the js_StringReplaceHelper function in js/src/jsstr.cpp, and unknown vectors.

Affected configurations

Nvd

Node

mozillafirefoxRange≤3.0.13

mozillafirefoxMatch0.1

mozillafirefoxMatch0.2

mozillafirefoxMatch0.3

mozillafirefoxMatch0.4

mozillafirefoxMatch0.5

mozillafirefoxMatch0.6

mozillafirefoxMatch0.6.1

mozillafirefoxMatch0.7

mozillafirefoxMatch0.7.1

mozillafirefoxMatch0.8

mozillafirefoxMatch0.9

mozillafirefoxMatch0.9rc

mozillafirefoxMatch0.9.1

mozillafirefoxMatch0.9.2

mozillafirefoxMatch0.9.3

mozillafirefoxMatch0.9_rc

mozillafirefoxMatch0.10

mozillafirefoxMatch0.10.1

mozillafirefoxMatch1.0

mozillafirefoxMatch1.0preview_release

mozillafirefoxMatch1.0.1

mozillafirefoxMatch1.0.2

mozillafirefoxMatch1.0.3

mozillafirefoxMatch1.0.4

mozillafirefoxMatch1.0.5

mozillafirefoxMatch1.0.6

mozillafirefoxMatch1.0.7

mozillafirefoxMatch1.0.8

mozillafirefoxMatch1.4.1

mozillafirefoxMatch1.5

mozillafirefoxMatch1.5beta1

mozillafirefoxMatch1.5beta2

mozillafirefoxMatch1.5.0.1

mozillafirefoxMatch1.5.0.2

mozillafirefoxMatch1.5.0.3

mozillafirefoxMatch1.5.0.4

mozillafirefoxMatch1.5.0.5

mozillafirefoxMatch1.5.0.6

mozillafirefoxMatch1.5.0.7

mozillafirefoxMatch1.5.0.8

mozillafirefoxMatch1.5.0.9

mozillafirefoxMatch1.5.0.10

mozillafirefoxMatch1.5.0.11

mozillafirefoxMatch1.5.0.12

mozillafirefoxMatch1.5.1

mozillafirefoxMatch1.5.2

mozillafirefoxMatch1.5.3

mozillafirefoxMatch1.5.4

mozillafirefoxMatch1.5.5

mozillafirefoxMatch1.5.6

mozillafirefoxMatch1.5.7

mozillafirefoxMatch1.5.8

mozillafirefoxMatch1.8

mozillafirefoxMatch2.0

mozillafirefoxMatch2.0beta_1

mozillafirefoxMatch2.0beta1

mozillafirefoxMatch2.0rc2

mozillafirefoxMatch2.0rc3

mozillafirefoxMatch2.0.0.1

mozillafirefoxMatch2.0.0.2

mozillafirefoxMatch2.0.0.3

mozillafirefoxMatch2.0.0.4

mozillafirefoxMatch2.0.0.5

mozillafirefoxMatch2.0.0.6

mozillafirefoxMatch2.0.0.7

mozillafirefoxMatch2.0.0.8

mozillafirefoxMatch2.0.0.9

mozillafirefoxMatch2.0.0.10

mozillafirefoxMatch2.0.0.11

mozillafirefoxMatch2.0.0.12

mozillafirefoxMatch2.0.0.13

mozillafirefoxMatch2.0.0.14

mozillafirefoxMatch2.0.0.15

mozillafirefoxMatch2.0.0.16

mozillafirefoxMatch2.0.0.17

mozillafirefoxMatch2.0.0.18

mozillafirefoxMatch2.0.0.19

mozillafirefoxMatch2.0.0.20

mozillafirefoxMatch2.0.0.21

mozillafirefoxMatch2.0_.1

mozillafirefoxMatch2.0_.4

mozillafirefoxMatch2.0_.5

mozillafirefoxMatch2.0_.6

mozillafirefoxMatch2.0_.7

mozillafirefoxMatch2.0_.9

mozillafirefoxMatch2.0_.10

mozillafirefoxMatch2.0_8

mozillafirefoxMatch3.0

mozillafirefoxMatch3.0alpha

mozillafirefoxMatch3.0beta2

mozillafirefoxMatch3.0beta5

mozillafirefoxMatch3.0.1

mozillafirefoxMatch3.0.2

mozillafirefoxMatch3.0.3

mozillafirefoxMatch3.0.4

mozillafirefoxMatch3.0.5

mozillafirefoxMatch3.0.6

mozillafirefoxMatch3.0.7

mozillafirefoxMatch3.0.8

mozillafirefoxMatch3.0.9

mozillafirefoxMatch3.0.10

mozillafirefoxMatch3.0.11

mozillafirefoxMatch3.0.12

Node

mozillafirefoxMatch3.5

mozillafirefoxMatch3.5.1

VendorProductVersionCPE
mozillafirefox0.8cpe:/a:mozilla:firefox:0.8:::
mozillafirefox3.0cpe:/a:mozilla:firefox:3.0:beta2::
mozillafirefox1.0.2cpe:/a:mozilla:firefox:1.0.2:::
mozillafirefox1.5.0.3cpe:/a:mozilla:firefox:1.5.0.3:::
mozillafirefox3.0.6cpe:/a:mozilla:firefox:3.0.6:::
mozillafirefox2.0+.7cpe:/a:mozilla:firefox:2.0+.7:::
mozillafirefox2.0+.6cpe:/a:mozilla:firefox:2.0+.6:::
mozillafirefox1.5.0.9cpe:/a:mozilla:firefox:1.5.0.9:::
mozillafirefox2.0.0.21cpe:/a:mozilla:firefox:2.0.0.21:::
mozillafirefox0.9+rccpe:/a:mozilla:firefox:0.9+rc:::

Vendor	Product	Version	CPE
mozilla	firefox	0.8	cpe:/a:mozilla:firefox:0.8:::
mozilla	firefox	3.0	cpe:/a:mozilla:firefox:3.0:beta2::
mozilla	firefox	1.0.2	cpe:/a:mozilla:firefox:1.0.2:::
mozilla	firefox	1.5.0.3	cpe:/a:mozilla:firefox:1.5.0.3:::
mozilla	firefox	3.0.6	cpe:/a:mozilla:firefox:3.0.6:::
mozilla	firefox	2.0+.7	cpe:/a:mozilla:firefox:2.0+.7:::
mozilla	firefox	2.0+.6	cpe:/a:mozilla:firefox:2.0+.6:::
mozilla	firefox	1.5.0.9	cpe:/a:mozilla:firefox:1.5.0.9:::
mozilla	firefox	2.0.0.21	cpe:/a:mozilla:firefox:2.0.0.21:::
mozilla	firefox	0.9+rc	cpe:/a:mozilla:firefox:0.9+rc:::