CVE-2010-2755 — Out-of-bounds Write in Mozilla Firefox

6 documents5 sources

Severity

10.0CRITICALNVD

EPSS

10.2%

top 6.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox

Timeline

PublishedJul 30

Latest updateMay 17

Description

layout/generic/nsObjectFrame.cpp in Mozilla Firefox 3.6.7 does not properly free memory in the parameter array of a plugin instance, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted HTML document, related to the DATA and SRC attributes of an OBJECT element. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-1214.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDmozilla/firefox3.6.7

🔴Vulnerability Details

GHSA

GHSA-fwcv-j34v-fh3m: layout/generic/nsObjectFrame↗2022-05-17

▶

📋Vendor Advisories

Ubuntu

Firefox and Xulrunner vulnerability↗2010-07-26

▶

Ubuntu

Firefox and Xulrunner vulnerability↗2010-07-26

▶

Red Hat

Mozilla arbitrary free flaw↗2010-07-24

▶

💬Community

Bugzilla

CVE-2010-2755 Mozilla arbitrary free flaw↗2010-07-23

▶