CVE-2010-1988Mozilla Firefox vulnerability

2 documents2 sources
Severity
10.0CRITICALNVD
EPSS
7.1%
top 8.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mozilla Firefox
Timeline
PublishedMay 20
Latest updateMay 14

Description

Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via JavaScript code that performs certain string concatenation and substring operations, a different vulnerability than CVE-2009-1571.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDmozilla/firefox3.6.3

🔴Vulnerability Details

1
GHSA
GHSA-5f63-6j8r-v53q: Mozilla Firefox 32022-05-14