Lucene search
NilsZDI-09-015HistoryMar 30, 2009 - 12:00 a.m.
Mozilla Firefox XUL _moveToEdgeShift() Memory Corruption Vulnerability
2009-03-3000:00:00
Nils
www.zerodayinitiative.com
19
EPSS
0.908
Percentile
98.9%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the XUL tree method _moveToEdgeShift(). In some cases this call will trigger garbage collection routines on in use objects which will result in a future call to a dangling pointer. This can be leveraged to execute arbitrary code under the context of the current user.
Related
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox XUL Tree Element Code Execution - Ver2 (CVE-2009-1044)
2014-03-31 00:00:00
Mozilla Firefox XUL Tree Element Code Execution - Ver2 (CVE-2009-1044)
2014-03-31 00:00:00
prion
prion
Design/Logic Flaw
2009-03-23 14:19:00
nvd
nvd
CVE-2009-1044
2009-03-23 14:19:12
seebug
seebug
Mozilla Firefox '_moveToEdgeShift' ่ฟ็จไปฃ็ ๆง่กๆผๆด
2009-04-04 00:00:00
Firefox _moveToEdgeShiftๆนๅผ่ฟ็จไปฃ็ ๆง่กๆผๆด
2009-04-01 00:00:00
securityvulns
securityvulns
ZDI-09-015: Mozilla Firefox XUL _moveToEdgeShift() Memory Corruption Vulnerability
2009-04-01 00:00:00
Mozilla Foundation Security Advisory 2009-13
2009-04-01 00:00:00
Mozilla Firefox / Seamonkey / Thunderbird multiple security vulnerabilities
2009-04-01 00:00:00
ubuntucve
ubuntucve
CVE-2009-1044
2009-03-27 00:00:00
mozilla
mozilla
Arbitrary code execution via XUL tree element โ Mozilla
2009-03-27 00:00:00
cve
cve
CVE-2009-1044
2009-03-23 14:19:12
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:31:20
cvelist
cvelist
CVE-2009-1044
2009-03-23 14:00:00
openvas
openvas
Ubuntu USN-745-1 (xulrunner-1.9)
2009-04-06 00:00:00
RedHat Security Advisory RHSA-2009:0398
2009-04-06 00:00:00
RedHat Security Advisory RHSA-2009:0398
2009-04-06 00:00:00
nessus
nessus
RHEL 2.1 / 3 / 4 : seamonkey (RHSA-2009:0398)
2009-03-30 00:00:00
openSUSE Security Update : MozillaFirefox (MozillaFirefox-745)
2009-07-21 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: gnome-web-photo-0.3-16.fc10
2009-03-28 17:23:55
[SECURITY] Fedora 9 Update: chmsee-1.0.1-10.fc9
2009-03-28 01:24:44
[SECURITY] Fedora 10 Update: Miro-2.0.3-2.fc10
2009-03-28 17:23:55
centos
centos
seamonkey security update
2009-03-28 14:45:12
firefox, xulrunner security update
2009-04-09 17:48:16
seamonkey security update
2009-03-30 22:53:22
debian
debian
[SECURITY] [DSA 1756-1] New xulrunner packages fix multiple vulnerabilities
2009-03-29 18:03:00
[SECURITY] [DSA 1756-1] New xulrunner packages fix multiple vulnerabilities
2009-03-29 18:03:00
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2009-03-28 00:00:00
oraclelinux
oraclelinux
firefox security update
2009-03-29 00:00:00
seamonkey security update
2009-03-29 00:00:00
redhat
redhat
(RHSA-2009:0397) Critical: firefox security update
2009-03-27 00:00:00
(RHSA-2009:0398) Critical: seamonkey security update
2009-03-27 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-04-20 12:00:48
osv
osv
xulrunner - multiple vulnerabilities
2009-03-29 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00