CVE-2009-3981Out-of-bounds Write in Mozilla Firefox

7 documents6 sources
Severity
9.3CRITICALNVD
EPSS
4.6%
top 10.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mozilla FirefoxMozilla Seamonkey
Timeline
PublishedDec 17
Latest updateMay 2

Description

Unspecified vulnerability in the browser engine in Mozilla Firefox before 3.0.16, SeaMonkey before 2.0.1, and Thunderbird allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDmozilla/firefox3.0.15+93
NVDmozilla/seamonkey2.0+35

Patches

Patch: www.mozilla.orgPatch: www.mozilla.org

🔴Vulnerability Details

2
GHSA
GHSA-3rf9-fc8c-hj8h: Unspecified vulnerability in the browser engine in Mozilla Firefox before 32022-05-02
CVEList
CVE-2009-3981: Unspecified vulnerability in the browser engine in Mozilla Firefox before 32009-12-17

📋Vendor Advisories

3
Ubuntu
Firefox 3.0 and Xulrunner 1.9 regression2010-01-08
Ubuntu
Firefox 3.0 and Xulrunner 1.9 vulnerabilities2009-12-18
Red Hat
Mozilla crashes with evidence of memory corruption2009-12-15

💬Community

1
Bugzilla
CVE-2009-3981 Mozilla crashes with evidence of memory corruption2009-12-11
CVE-2009-3981 — Out-of-bounds Write in Mozilla Firefox | cvebase