CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
98.0%
The Mozilla Project reports:
MFSA 2010-49 Miscellaneous memory safety hazards (rv:1.9.2.9/ 1.9.1.12)
MFSA 2010-50 Frameset integer overflow vulnerability
MFSA 2010-51 Dangling pointer vulnerability using DOM plugin array
MFSA 2010-52 Windows XP DLL loading vulnerability
MFSA 2010-53 Heap buffer overflow in nsTextFrameUtils::TransformText
MFSA 2010-54 Dangling pointer vulnerability in nsTreeSelection
MFSA 2010-55 XUL tree removal crash and remote code execution
MFSA 2010-56 Dangling pointer vulnerability in nsTreeContentView
MFSA 2010-57 Crash and remote code execution in normalizeDocument
MFSA 2010-58 Crash on Mac using fuzzed font in data: URL
MFSA 2010-59 SJOW creates scope chains ending in outer object
MFSA 2010-60 XSS using SJOW scripted function
MFSA 2010-61 UTF-7 XSS by overriding document charset using object type attribute
MFSA 2010-62 Copy-and-paste or drag-and-drop into designMode document allows XSS
MFSA 2010-63 Information leak via XMLHttpRequest statusText
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | firefox | < 3.6.9,1 | UNKNOWN |
FreeBSD | any | noarch | libxul | < 1.9.2.9 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox | < 3.6.9,1 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox-devel | < 3.5.12 | UNKNOWN |
FreeBSD | any | noarch | seamonkey | < 2.0.7 | UNKNOWN |
FreeBSD | any | noarch | thunderbird | = 3.0 | UNKNOWN |
FreeBSD | any | noarch | thunderbird | < 3.0.7 | UNKNOWN |
www.mozilla.org/security/announce/2010/mfsa2010-49.html
www.mozilla.org/security/announce/2010/mfsa2010-50.html
www.mozilla.org/security/announce/2010/mfsa2010-51.html
www.mozilla.org/security/announce/2010/mfsa2010-52.html
www.mozilla.org/security/announce/2010/mfsa2010-53.html
www.mozilla.org/security/announce/2010/mfsa2010-54.html
www.mozilla.org/security/announce/2010/mfsa2010-55.html
www.mozilla.org/security/announce/2010/mfsa2010-56.html
www.mozilla.org/security/announce/2010/mfsa2010-57.html
www.mozilla.org/security/announce/2010/mfsa2010-58.html
www.mozilla.org/security/announce/2010/mfsa2010-59.html
www.mozilla.org/security/announce/2010/mfsa2010-60.html
www.mozilla.org/security/announce/2010/mfsa2010-61.html
www.mozilla.org/security/announce/2010/mfsa2010-62.html
www.mozilla.org/security/announce/2010/mfsa2010-63.html