CVE-2010-0166

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The gfxTextRun::SanitizeGlyphRuns function in gfx/thebes/src/gfxFont.cpp in the browser engine in Mozilla Firefox 3.6 before 3.6.2 on Mac OS X, when the Core Text API is used, does not properly perform certain deletions, which allows remote attackers to cause a denial of service (memory corruption and application crash) and possibly execute arbitrary code via an HTML document containing invisible Unicode characters, as demonstrated by the U+FEFF, U+FFF9, U+FFFA, and U+FFFB characters.

References

http://www.mozilla.org/security/announce/2010/mfsa2010-11.html

http://www.securityfocus.com/bid/38918

http://www.securityfocus.com/bid/38943

http://www.vupen.com/english/advisories/2010/0692

https://bugzilla.mozilla.org/show_bug.cgi?id=538065

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14182

Details

Source: MITRE

Published: 2010-03-25

Updated: 2017-09-19

Type: CWE-119

Risk Information

CVSS v2

Base Score: 5.1

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 4.9

Severity: MEDIUM

Tenable Plugins

View all (8 total)

IDNameProductFamilySeverity
63402GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST)NessusGentoo Local Security Checks
critical
801342Mozilla Firefox < 3.6.2 Multiple Vulnerabilities.Log Correlation EngineWeb Clients
high
5485Mozilla Firefox 3.6.x < 3.6.2 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
medium
801210Mozilla Thunderbird < 3.0.2 Multiple VulnerabilitiesLog Correlation EngineSMTP Clients
high
5355Mozilla Thunderbird < 3.0.2 Multiple VulnerabilitiesNessus Network MonitorSMTP Clients
medium
801219Mozilla SeaMonkey < 2.0.3 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
5343SeaMonkey < 2.0.3 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
medium
5342Mozilla Firefox < 3.0.18 / 3.5.8 / 3.6 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
medium