CVE-2010-3169

HIGH

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

References

http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefox

http://lists.fedoraproject.org/pipermail/package-announce/2010-September/047282.html

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00002.html

http://secunia.com/advisories/42867

http://support.avaya.com/css/P8/documents/100110210

http://support.avaya.com/css/P8/documents/100112690

http://www.debian.org/security/2010/dsa-2106

http://www.mandriva.com/security/advisories?name=MDVSA-2010:173

http://www.mozilla.org/security/announce/2010/mfsa2010-49.html

http://www.securityfocus.com/bid/43118

http://www.vupen.com/english/advisories/2010/2323

http://www.vupen.com/english/advisories/2011/0061

https://bugzilla.mozilla.org/show_bug.cgi?id=532730

https://bugzilla.mozilla.org/show_bug.cgi?id=564461

https://bugzilla.mozilla.org/show_bug.cgi?id=568465

https://bugzilla.mozilla.org/show_bug.cgi?id=572232

https://bugzilla.mozilla.org/show_bug.cgi?id=581784

https://bugzilla.mozilla.org/show_bug.cgi?id=583225

https://bugzilla.mozilla.org/show_bug.cgi?id=584357

https://exchange.xforce.ibmcloud.com/vulnerabilities/61657

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12145

Details

Source: MITRE

Published: 2010-09-09

Updated: 2017-09-19

Risk Information

CVSS v2.0

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH