CVE-2010-1028

2010-03-1921:30:00

CWE-189

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.862

Percentile

98.6%

JSON

Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vd_ff module in VulnDisco 9.0.

Affected configurations

Nvd

Node

mozillafirefoxMatch3.6

mozillafirefoxMatch3.6a1_pre

mozillafirefoxMatch3.6.1

mozillafirefoxMatch3.7a1_pre

mozillafirefoxMatch3.7alpha1

mozillafirefoxMatch3.7alpha2

AND

microsoftwindows_vista

microsoftwindows_xpsp3

VendorProductVersionCPE
mozillafirefox3.6cpe:2.3:a:mozilla:firefox:3.6:*:*:*:*:*:*:*
mozillafirefox3.6cpe:2.3:a:mozilla:firefox:3.6:a1_pre:*:*:*:*:*:*
mozillafirefox3.6.1cpe:2.3:a:mozilla:firefox:3.6.1:*:*:*:*:*:*:*
mozillafirefox3.7cpe:2.3:a:mozilla:firefox:3.7:a1_pre:*:*:*:*:*:*
mozillafirefox3.7cpe:2.3:a:mozilla:firefox:3.7:alpha1:*:*:*:*:*:*
mozillafirefox3.7cpe:2.3:a:mozilla:firefox:3.7:alpha2:*:*:*:*:*:*
microsoftwindows_vista*cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	firefox	3.6	cpe:2.3:a:mozilla:firefox:3.6:::::::*
mozilla	firefox	3.6	cpe:2.3:a:mozilla:firefox:3.6:a1_pre::::::
mozilla	firefox	3.6.1	cpe:2.3:a:mozilla:firefox:3.6.1:::::::*
mozilla	firefox	3.7	cpe:2.3:a:mozilla:firefox:3.7:a1_pre::::::
mozilla	firefox	3.7	cpe:2.3:a:mozilla:firefox:3.7:alpha1::::::
mozilla	firefox	3.7	cpe:2.3:a:mozilla:firefox:3.7:alpha2::::::
microsoft	windows_vista	*	cpe:2.3:o:microsoft:windows_vista::::::::
microsoft	windows_xp	*	cpe:2.3:o:microsoft:windows_xp::sp3::::::*