CVE-2009-0353 — Out-of-bounds Write in Mozilla Seamonkey

CWE-3996 documents6 sources

Severity

10.0CRITICALNVD

EPSS

6.8%

top 8.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox

Timeline

PublishedFeb 4

Latest updateMay 2

Description

Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the JavaScript engine.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/seamonkey1.1.13+22

▶NVDmozilla/thunderbird2.0.0.19+36

▶NVDmozilla/firefox6 versions+5

🔴Vulnerability Details

GHSA

GHSA-xmr3-m6h9-383p: Unspecified vulnerability in Mozilla Firefox 3↗2022-05-02

▶

CVEList

CVE-2009-0353: Unspecified vulnerability in Mozilla Firefox 3↗2009-02-04

▶

📋Vendor Advisories

Ubuntu

Firefox and Xulrunner vulnerabilities↗2009-02-10

▶

Red Hat

Firefox javascript crashes with evidence of memory corruption↗2009-02-03

▶

💬Community

Bugzilla

CVE-2009-0353 Firefox javascript crashes with evidence of memory corruption↗2009-01-29

▶