Lucene search
Mozilla FoundationMFSA2009-12HistoryMar 27, 2009 - 12:00 a.m.
XSL Transformation vulnerability β Mozilla
2009-03-2700:00:00
Mozilla Foundation
www.mozilla.org
20
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.96
Percentile
99.5%
Security researcher Guido Landi discovered that a XSL stylesheet could be used to crash the browser during a XSL transformation. An attacker could potentially use this crash to run arbitrary code on a victimβs computer.
Affected configurations
Node
mozillafirefoxRange<3.0.8
ORmozillaseamonkeyRange<1.1.16
Related
openvas
openvas
Firefox XSL Parsing Vulnerability - Linux
2009-04-08 00:00:00
Mozilla Seamonkey XSL Parsing Vulnerability (Linux)
2009-04-08 00:00:00
Mozilla Seamonkey XSL Parsing Vulnerability - Windows
2009-04-08 00:00:00
prion
prion
Code injection
2009-03-27 00:30:00
nvd
nvd
CVE-2009-1169
2009-03-27 00:30:00
ubuntucve
ubuntucve
CVE-2009-1169
2009-03-27 00:00:00
cve
cve
CVE-2009-1169
2009-03-27 00:30:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox XSL Transformation Memory Corruption - Ver2 (CVE-2009-1169)
2015-03-26 00:00:00
Mozilla Firefox XSL Transformation Memory Corruption (CVE-2009-1169)
2010-03-31 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:31:20
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2009-12
2009-04-01 00:00:00
Mozilla Firefox / Seamonkey / Thunderbird multiple security vulnerabilities
2009-04-01 00:00:00
seebug
seebug
Firefox XSL解ζroot XMLζ ηΎε
εη ΄εζΌζ΄
2009-04-01 00:00:00
cvelist
cvelist
CVE-2009-1169
2009-03-27 00:00:00
exploitdb
exploitdb
Mozilla Firefox XSL - Parsing Remote Memory Corruption (PoC) (1)
2009-03-25 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: epiphany-2.22.2-9.fc9
2009-03-28 01:24:44
[SECURITY] Fedora 9 Update: totem-2.23.2-13.fc9
2009-03-28 17:24:32
[SECURITY] Fedora 10 Update: epiphany-2.24.3-4.fc10
2009-03-28 17:23:55
nessus
nessus
CentOS 3 : seamonkey (CESA-2009:0398)
2009-03-30 00:00:00
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : firefox, firefox-3.0, xulrunner-1.9 vulnerabilities (USN-745-1)
2009-04-23 00:00:00
Firefox < 3.0.8 Multiple Vulnerabilities
2009-03-30 00:00:00
debian
debian
[SECURITY] [DSA 1756-1] New xulrunner packages fix multiple vulnerabilities
2009-03-29 18:03:00
[SECURITY] [DSA 1756-1] New xulrunner packages fix multiple vulnerabilities
2009-03-29 18:03:00
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2009-03-28 00:00:00
centos
centos
seamonkey security update
2009-03-28 14:45:12
firefox, xulrunner security update
2009-04-09 17:48:16
seamonkey security update
2009-03-30 22:53:22
oraclelinux
oraclelinux
firefox security update
2009-03-29 00:00:00
seamonkey security update
2009-03-29 00:00:00
redhat
redhat
(RHSA-2009:0397) Critical: firefox security update
2009-03-27 00:00:00
(RHSA-2009:0398) Critical: seamonkey security update
2009-03-27 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-04-20 12:00:48
remote code execution in MozillaFirefox
2009-04-20 12:01:40
osv
osv
xulrunner - multiple vulnerabilities
2009-03-29 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.96
Percentile
99.5%
Related for MFSA2009-12