Lucene search
Mozilla FoundationMFSA2010-51HistorySep 07, 2010 - 12:00 a.m.
Dangling pointer vulnerability using DOM plugin array — Mozilla
2010-09-0700:00:00
Mozilla Foundation
www.mozilla.org
27
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.233
Percentile
96.6%
Security researcher Sergey Glazunov reported a dangling pointer vulnerability in the implementation of navigator.plugins in which the navigator object could retain a pointer to the plugins array even after it had been destroyed. An attacker could potentially use this issue to crash the browser and run arbitrary code on a victim’s computer.
Affected configurations
Node
mozillafirefoxRange<3.5.12
ORmozillafirefoxRange<3.6.9
ORmozillaseamonkeyRange<2.0.7
ORmozillathunderbirdRange<3.0.7
ORmozillathunderbirdRange<3.1.3
Related
ubuntucve
ubuntucve
CVE-2010-2767
2010-09-07 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:48:12
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2010-51
2010-09-10 00:00:00
Mozilla Firefox / Thunderbird / SeaMonkey multiple security vulnerabilities
2010-09-16 00:00:00
nvd
nvd
CVE-2010-2767
2010-09-09 19:00:02
prion
prion
Design/Logic Flaw
2010-09-09 19:00:00
cvelist
cvelist
CVE-2010-2767
2010-09-09 18:00:00
cve
cve
CVE-2010-2767
2010-09-09 19:00:02
openvas
openvas
CentOS Update for seamonkey CESA-2010:0680 centos4 i386
2010-09-10 00:00:00
RedHat Update for seamonkey RHSA-2010:0680-01
2010-09-10 00:00:00
CentOS Update for thunderbird CESA-2010:0682 centos5 i386
2011-08-09 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2010-09-08 00:00:00
seamonkey security update
2010-09-08 00:00:00
firefox security update
2010-09-08 00:00:00
nessus
nessus
Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64
2012-08-01 00:00:00
Scientific Linux Security Update : thunderbird on SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
Debian DSA-2106-1 : xulrunner - several vulnerabilities
2010-09-09 00:00:00
centos
centos
thunderbird security update
2010-09-08 22:58:38
seamonkey security update
2010-09-08 21:19:58
firefox, nspr, nss, xulrunner security update
2010-09-08 22:50:48
redhat
redhat
(RHSA-2010:0680) Critical: seamonkey security update
2010-09-07 00:00:00
(RHSA-2010:0682) Moderate: thunderbird security update
2010-09-07 00:00:00
(RHSA-2010:0681) Critical: firefox security update
2010-09-07 00:00:00
debian
debian
[SECURITY] [DSA-2106-2] New xulrunner packages fix regression
2010-09-19 19:35:13
[SECURITY] [DSA-2106-2] New xulrunner packages fix regression
2010-09-19 19:35:13
[SECURITY] [DSA 2106-1] New xulrunner packages fix several vulnerabilities
2010-09-08 17:50:39
osv
osv
xulrunner - several vulnerabilities
2010-09-08 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: mozvoikko-1.0-12.fc12
2010-09-09 01:23:44
[SECURITY] Fedora 12 Update: gnome-python2-extras-2.25.3-20.fc12
2010-09-09 01:23:44
[SECURITY] Fedora 12 Update: gnome-web-photo-0.9-9.fc12
2010-09-09 01:23:44
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2010-09-08 00:00:00
Thunderbird regression
2010-09-16 00:00:00
Thunderbird vulnerabilities
2010-09-08 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2010-09-07 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey
2010-10-12 16:13:47
remote code execution in MozillaFirefox,seamonkey,MozillaThunderbird
2010-11-08 11:27:17
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.233
Percentile
96.6%
Related for MFSA2010-51