10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.89 High
EPSS
Percentile
98.7%
Mozilla Foundation reports:
MFSA 2009-64 Crashes with evidence of memory
corruption (rv:1.9.1.4/ 1.9.0.15)
MFSA 2009-63 Upgrade media libraries to fix memory
safety bugs
MFSA 2009-62 Download filename spoofing with RTL
override
MFSA 2009-61 Cross-origin data theft through
document.getSelection()
MFSA 2009-59 Heap buffer overflow in string to
number conversion
MFSA 2009-57 Chrome privilege escalation in
XPCVariant::VariantDataToJS()
MFSA 2009-56 Heap buffer overflow in GIF color map
parser
MFSA 2009-55 Crash in proxy auto-configuration
regexp parsing
MFSA 2009-54 Crash with recursive web-worker calls
MFSA 2009-53 Local downloaded file tampering
MFSA 2009-52 Form history vulnerable to stealing
www.mozilla.org/security/announce/2009/mfsa2009-52.html
www.mozilla.org/security/announce/2009/mfsa2009-53.html
www.mozilla.org/security/announce/2009/mfsa2009-54.html
www.mozilla.org/security/announce/2009/mfsa2009-55.html
www.mozilla.org/security/announce/2009/mfsa2009-56.html
www.mozilla.org/security/announce/2009/mfsa2009-57.html
www.mozilla.org/security/announce/2009/mfsa2009-59.html
www.mozilla.org/security/announce/2009/mfsa2009-61.html
www.mozilla.org/security/announce/2009/mfsa2009-62.html
www.mozilla.org/security/announce/2009/mfsa2009-63.html
www.mozilla.org/security/announce/2009/mfsa2009-64.html