CVE-2010-1202 — Out-of-bounds Write in Mozilla Seamonkey

12 documents6 sources

Severity

9.3CRITICALNVD

EPSS

6.2%

top 9.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox

Timeline

PublishedJun 24

Latest updateMay 2

Description

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/seamonkey2.0.4+34

▶NVDmozilla/thunderbird3.0.4+41

▶NVDmozilla/firefox12 versions+11

🔴Vulnerability Details

GHSA

GHSA-p46f-7cw6-jmqp: Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3↗2022-05-02

▶

CVEList

CVE-2010-1202: Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3↗2010-06-23

▶

📋Vendor Advisories

Ubuntu

Firefox and Xulrunner vulnerability↗2010-07-26

▶

Ubuntu

Firefox and Xulrunner vulnerabilities↗2010-07-23

▶

Ubuntu

ant, apturl, Epiphany, gluezilla, gnome-python-extras, liferea, mozvoikko, OpenJDK, packagekit, ubufox, webfav, yelp update↗2010-07-23

▶

Ubuntu

Thunderbird vulnerabilities↗2010-07-06

▶

Ubuntu

Firefox regression↗2010-06-30

▶

💬Community

Bugzilla

CVE-2010-1202 Mozilla Crashes with evidence of memory corruption↗2010-05-10

▶