Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-1199 — Integer Overflow or Wraparound in Mozilla Seamonkey

CWE-189 CWE-190 — Integer Overflow or Wraparound14 documents7 sources

Severity

9.3CRITICALNVD

EPSS

42.7%

top 2.52%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox

Timeline

PublishedJun 24

Latest updateMay 2

Description

Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a large text value for a node.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/seamonkey2.0.4+34

▶NVDmozilla/thunderbird3.0.4+41

▶NVDmozilla/firefox12 versions+11

🔴Vulnerability Details

GHSA

GHSA-gf95-pc3w-rmh9: Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3↗2022-05-02

▶

CVEList

CVE-2010-1199: Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3↗2010-06-23

▶

💥Exploits & PoCs

Exploit-DB

Mozilla Firefox 3.6.3 - XSLT Sort Remote Code Execution↗2010-09-09

▶

Exploit-DB

Mozilla Firefox/Thunderbird/SeaMonkey - XSLT Integer Overflow↗2010-06-22

▶

📋Vendor Advisories

Ubuntu

Firefox and Xulrunner vulnerability↗2010-07-26

▶

Ubuntu

Firefox and Xulrunner vulnerabilities↗2010-07-23

▶

Ubuntu

ant, apturl, Epiphany, gluezilla, gnome-python-extras, liferea, mozvoikko, OpenJDK, packagekit, ubufox, webfav, yelp update↗2010-07-23

▶

Ubuntu

Thunderbird vulnerabilities↗2010-07-06

▶

Ubuntu

Firefox regression↗2010-06-30

▶

💬Community

Bugzilla

CVE-2010-1199 Mozilla Integer Overflow in XSLT Node Sorting↗2010-05-10

▶