CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
98.3%
Mozilla Project reports:
MFSA 2010-33 User tracking across sites using Math.random()
MFSA 2010-32 Content-Disposition: attachment ignored if Content-Type: multipart also present
MFSA 2010-31 focus() behavior can be used to inject or steal keystrokes
MFSA 2010-30 Integer Overflow in XSLT Node Sorting
MFSA 2010-29 Heap buffer overflow in nsGenericDOMDataNode::SetTextInternal
MFSA 2010-28 Freed object reuse across plugin instances
MFSA 2010-27 Use-after-free error in nsCycleCollector::MarkRoots()
MFSA 2010-26 Crashes with evidence of memory corruption (rv:1.9.2.4/ 1.9.1.10)
MFSA 2010-25 Re-use of freed object due to scope confusion
www.mozilla.org/security/announce/2010/mfsa2010-25.html
www.mozilla.org/security/announce/2010/mfsa2010-26.html
www.mozilla.org/security/announce/2010/mfsa2010-27.html
www.mozilla.org/security/announce/2010/mfsa2010-28.html
www.mozilla.org/security/announce/2010/mfsa2010-29.html
www.mozilla.org/security/announce/2010/mfsa2010-30.html
www.mozilla.org/security/announce/2010/mfsa2010-31.html
www.mozilla.org/security/announce/2010/mfsa2010-32.html
www.mozilla.org/security/announce/2010/mfsa2010-33.html