10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8.2 High
AI Score
Confidence
High
0.903 High
EPSS
Percentile
98.8%
Several flaws were discovered in the Firefox browser and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could cause a denial of service or possibly execute arbitrary code
with the privileges of the user invoking the program. (CVE-2009-2462,
CVE-2009-2463, CVE-2009-2464, CVE-2009-2465, CVE-2009-2466, CVE-2009-2469)
Attila Suszter discovered a flaw in the way Firefox processed Flash content.
If a user were tricked into viewing and navigating within a specially
crafted Flash object, a remote attacker could cause a denial of service or
possibly execute arbitrary code with the privileges of the user invoking
the program. (CVE-2009-2467)
It was discovered that Firefox did not properly handle some SVG content. An
attacker could exploit this to cause a denial of service or possibly
execute arbitrary code with the privileges of the user invoking the
program. (CVE-2009-2469)
A flaw was discovered in the JavaScript engine. If a user were tricked into
viewing a malicious website, an attacker could exploit this perform
cross-site scripting attacks. (CVE-2009-2472)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.04 | noarch | firefox-3.0 | < 3.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | abrowser | < 3.0-branding-3.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | firefox | < 3.0-3.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | firefox | < 3.0-branding-3.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | firefox | < 3.0-dev-3.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | firefox | < 3.0-gnome-support-3.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | abrowser | < 3.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | xulrunner-1.9 | < 1.9.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | xulrunner-1.9 | < dev-1.9.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | xulrunner-1.9 | < gnome-support-1.9.0.12+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |