CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
93.9%
The TraceRecorder::traverseScopeChain function in js/src/jstracer.cpp in
the browser engine in Mozilla Firefox 3.6 before 3.6.2 allows remote
attackers to cause a denial of service (memory corruption and application
crash) and possibly execute arbitrary code via vectors involving certain
indirect calls to the JavaScript eval function.