CVE-2010-2765Integer Overflow or Wraparound in Mozilla Firefox

CWE-189CWE-190Integer Overflow or Wraparound11 documents7 sources
Severity
9.3CRITICALNVD
EPSS
4.0%
top 11.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla FirefoxMozilla SeamonkeyMozilla Thunderbird
Timeline
PublishedSep 9
Latest updateMay 17

Description

Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 might allow remote attackers to execute arbitrary code via a large number of values in the cols (aka columns) attribute, leading to a heap-based buffer overflow.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

NVDmozilla/firefox3.5.11+87
NVDmozilla/seamonkey2.0.6+40
NVDmozilla/thunderbird3.0.6+67

🔴Vulnerability Details

2
GHSA
GHSA-hr47-2mwx-hrmm: Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 32022-05-17
CVEList
CVE-2010-2765: Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 32010-09-09

💥Exploits & PoCs

2
Exploit-DB
Belkin N150 Wireless Router - Password Disclosure2012-05-11
Exploit-DB
DD-WRT HTTPd Daemon/Service - Arbitrary Command Execution (Metasploit)2010-07-07

📋Vendor Advisories

5
Ubuntu
Firefox and Xulrunner regression2010-09-16
Ubuntu
Thunderbird regression2010-09-16
Ubuntu
Thunderbird vulnerabilities2010-09-08
Ubuntu
Firefox and Xulrunner vulnerabilities2010-09-08
Red Hat
Mozilla Frameset integer overflow vulnerability (MFSA 2010-50)2010-09-07

💬Community

1
Bugzilla
CVE-2010-2765 Mozilla Frameset integer overflow vulnerability (MFSA 2010-50)2010-09-03
CVE-2010-2765 — Integer Overflow or Wraparound | cvebase