CVE-2010-1028 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox

CWE-189 CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources

Severity

10.0CRITICALNVD

NVD9.3OSV9.3

EPSS

9.9%

top 6.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Calibre Mozilla Firefox

Timeline

PublishedMar 19

Latest updateMay 2

Description

Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vd_ff module in VulnDisco 9.0.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

▶NVDmozilla/firefox9 versions+8

▶debiandebian/calibre< calibre 2.38.0+dfsg-1 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-j2gp-w4x2-2gc7: Unspecified vulnerability in Mozilla Firefox 3↗2022-05-02

▶

GHSA

GHSA-c2mm-7gpv-8xqx: Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3↗2022-04-23

▶

OSV

CVE-2010-1028: Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3↗2010-03-19

▶

💥Exploits & PoCs

Exploit-DB

Joomla! Component Teams - Multiple Blind SQL Injections↗2010-08-10

▶

📋Vendor Advisories

Red Hat

firefox: unspecified code execution vulnerability (VulnDisco 9.0)↗2010-02-01

▶

Debian

CVE-2010-1028: calibre - Integer overflow in the decompression functionality in the Web Open Fonts Format...↗2010

▶

💬Community

Bugzilla

calibre: vulnerable embedded copy of WOFF↗2015-05-29

▶

Bugzilla

CVE-2010-1028 firefox: unspecified code execution vulnerability (VulnDisco 9.0)↗2010-02-18

▶