HIGH
Use-after-free vulnerability in the NodeIterator implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via a crafted NodeFilter that detaches DOM nodes, related to the NodeIterator interface and a javascript callback.
http://www.mozilla.org/security/announce/2010/mfsa2010-36.html
http://www.securityfocus.com/archive/1/512511
http://www.securityfocus.com/bid/41845
http://www.zerodayinitiative.com/advisories/ZDI-10-130/
https://bugzilla.mozilla.org/show_bug.cgi?id=552110
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11055
OR
cpe:2.3:a:mozilla:firefox:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.5.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.6.3:*:*:*:*:*:*:*
OR
cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1:alpha:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1:beta:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.14:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.16:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.17:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.18:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.19:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.5.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.5.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:* versions up to 2.0.5 (inclusive)
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 75731 | openSUSE Security Update : seamonkey (openSUSE-SU-2010:0430-1) | Nessus | SuSE Local Security Checks | high |
| 75669 | openSUSE Security Update : mozilla-xulrunner191 (mozilla-xulrunner191-2779) | Nessus | SuSE Local Security Checks | high |
| 75646 | openSUSE Security Update : MozillaFirefox (MozillaFirefox-2807) | Nessus | SuSE Local Security Checks | critical |
| 68068 | Oracle Linux 4 / 5 : firefox (ELSA-2010-0547) | Nessus | Oracle Linux Local Security Checks | high |
| 68067 | Oracle Linux 3 / 4 : seamonkey (ELSA-2010-0546) | Nessus | Oracle Linux Local Security Checks | high |
| 63939 | RHEL 5 : thunderbird (RHSA-2010:0545) | Nessus | Red Hat Local Security Checks | critical |
| 63402 | GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST) | Nessus | Gentoo Local Security Checks | critical |
| 60818 | Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | high |
| 50874 | SuSE 11 / 11.1 Security Update : Mozilla Firefox (SAT Patch Numbers 2780 / 2781) | Nessus | SuSE Local Security Checks | high |
| 49894 | SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7101) | Nessus | SuSE Local Security Checks | high |
| 48342 | CentOS 3 : seamonkey (CESA-2010:0546) | Nessus | CentOS Local Security Checks | high |
| 47907 | openSUSE Security Update : MozillaFirefox (openSUSE-SU-2010:0430-3) | Nessus | SuSE Local Security Checks | high |
| 47906 | openSUSE Security Update : MozillaFirefox (openSUSE-SU-2010:0430-3) | Nessus | SuSE Local Security Checks | high |
| 47881 | RHEL 4 / 5 : firefox (RHSA-2010:0547) | Nessus | Red Hat Local Security Checks | high |
| 47880 | RHEL 3 / 4 : seamonkey (RHSA-2010:0546) | Nessus | Red Hat Local Security Checks | high |
| 47856 | Ubuntu 8.04 LTS / 10.04 LTS : firefox, firefox-3.0, xulrunner-1.9.2 vulnerability (USN-957-2) | Nessus | Ubuntu Local Security Checks | critical |
| 47854 | openSUSE Security Update : seamonkey (openSUSE-SU-2010:0430-1) | Nessus | SuSE Local Security Checks | high |
| 47826 | Ubuntu 8.04 LTS / 10.04 LTS : firefox, firefox-3.0, xulrunner-1.9.2 vulnerabilities (USN-957-1) | Nessus | Ubuntu Local Security Checks | high |
| 47825 | Ubuntu 9.04 / 9.10 : ant, apturl, epiphany-browser, gluezilla, gnome-python-extras, liferea, mozvoikko, openjdk-6, packagekit, ubufox, webfav, yelp update (USN-930-5) | Nessus | Ubuntu Local Security Checks | critical |
| 47824 | Ubuntu 9.04 / 9.10 : firefox-3.0, firefox-3.5, xulrunner-1.9.2 vulnerabilities (USN-930-4) | Nessus | Ubuntu Local Security Checks | critical |
| 47812 | Fedora 12 : firefox-3.5.11-1.fc12 / galeon-2.0.7-24.fc12 / gnome-python2-extras-2.25.3-19.fc12 / etc (2010-11375) | Nessus | Fedora Local Security Checks | high |
| 47811 | Fedora 12 : seamonkey-2.0.6-1.fc12 (2010-11363) | Nessus | Fedora Local Security Checks | high |
| 47809 | Fedora 13 : firefox-3.6.7-1.fc13 / galeon-2.0.7-30.fc13 / gnome-python2-extras-2.25.3-20.fc13 / etc (2010-11345) | Nessus | Fedora Local Security Checks | high |
| 47807 | Fedora 13 : seamonkey-2.0.6-1.fc13 (2010-11327) | Nessus | Fedora Local Security Checks | high |
| 47806 | CentOS 4 / 5 : firefox (CESA-2010:0547) | Nessus | CentOS Local Security Checks | high |
| 47805 | CentOS 5 : thunderbird (CESA-2010:0545) | Nessus | CentOS Local Security Checks | critical |
| 47794 | FreeBSD : mozilla -- multiple vulnerabilities (8c2ea875-9499-11df-8e32-000f20797ede) | Nessus | FreeBSD Local Security Checks | high |
| 47782 | Firefox 3.6 < 3.6.7 Multiple Vulnerabilities | Nessus | Windows | high |
| 47781 | Firefox < 3.5.11 Multiple Vulnerabilities | Nessus | Windows | high |
| 800871 | SeaMonkey 2.0.x < 2.0.6 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
| 800782 | Firefox 3.5.x < 3.5.11 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
| 800780 | Firefox 3.6.x < 3.6.7 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
| 47785 | SeaMonkey < 2.0.6 Multiple Vulnerabilities | Nessus | Windows | high |
| 5610 | SeaMonkey 2.0.x < 2.0.6 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | medium |
| 5607 | Mozilla Firefox 3.6.x < 3.6.7 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | medium |
| 5606 | Mozilla Firefox 3.5.x < 3.5.11 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | medium |