Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-2765

Опубликовано: 07 сент. 2010
Источник: redhat
CVSS2: 6.8
EPSS Низкий

Описание

Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 might allow remote attackers to execute arbitrary code via a large number of values in the cols (aka columns) attribute, leading to a heap-based buffer overflow.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6firefoxNot affected
Red Hat Enterprise Linux 3seamonkeyFixedRHSA-2010:068008.09.2010
Red Hat Enterprise Linux 4seamonkeyFixedRHSA-2010:068008.09.2010
Red Hat Enterprise Linux 4firefoxFixedRHSA-2010:068108.09.2010
Red Hat Enterprise Linux 4nsprFixedRHSA-2010:068108.09.2010
Red Hat Enterprise Linux 4nssFixedRHSA-2010:068108.09.2010
Red Hat Enterprise Linux 4thunderbirdFixedRHSA-2010:068208.09.2010
Red Hat Enterprise Linux 5firefoxFixedRHSA-2010:068108.09.2010
Red Hat Enterprise Linux 5nsprFixedRHSA-2010:068108.09.2010
Red Hat Enterprise Linux 5nssFixedRHSA-2010:068108.09.2010

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Critical
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=630056Mozilla Frameset integer overflow vulnerability (MFSA 2010-50)

EPSS

Процентиль: 88%
0.03948
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-2765

ubuntu
почти 15 лет назад

Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 might allow remote attackers to execute arbitrary code via a large number of values in the cols (aka columns) attribute, leading to a heap-based buffer overflow.

nvd логотип

CVE-2010-2765

nvd
почти 15 лет назад

Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 might allow remote attackers to execute arbitrary code via a large number of values in the cols (aka columns) attribute, leading to a heap-based buffer overflow.

debian логотип

CVE-2010-2765

debian
почти 15 лет назад

Integer overflow in the FRAMESET element implementation in Mozilla Fir ...

github логотип

GHSA-hr47-2mwx-hrmm

github
около 3 лет назад

Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 might allow remote attackers to execute arbitrary code via a large number of values in the cols (aka columns) attribute, leading to a heap-based buffer overflow.

oracle-oval логотип

ELSA-2010-0681

oracle-oval
почти 15 лет назад

ELSA-2010-0681: firefox security update (CRITICAL)

EPSS

Процентиль: 88%
0.03948
Низкий

6.8 Medium

CVSS2