Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-2753

Опубликовано: 30 июл. 2010
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.3
CVSS3: 8.8

Описание

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a XUL tree element, which triggers a use-after-free.

РелизСтатусПримечание
dapper

ignored

end of life
devel

released

3.6.7+build2+nobinonly-0ubuntu1
hardy

ignored

end of life
jaunty

DNE

karmic

DNE

lucid

released

3.6.7+build2+nobinonly-0ubuntu0.10.04.1
maverick

released

3.6.7+build2+nobinonly-0ubuntu1
natty

released

3.6.7+build2+nobinonly-0ubuntu1
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

released

3.6.7+build2+nobinonly-0ubuntu0.8.04.1
jaunty

released

3.6.7+build2+nobinonly-0ubuntu0.9.04.1
karmic

DNE

lucid

DNE

maverick

DNE

natty

DNE

upstream

needs-triage

Ubuntu source uses 3.6.x

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

DNE

jaunty

ignored

karmic

released

3.6.7+build2+nobinonly-0ubuntu0.9.10.1
lucid

DNE

maverick

DNE

natty

DNE

upstream

needs-triage

Ubuntu source uses 3.6.x

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

3.1.3+build1+nobinonly-0ubuntu1
hardy

ignored

end of life
jaunty

ignored

end of life
karmic

ignored

end of life
lucid

released

3.0.6+build2+nobinonly-0ubuntu0.10.04.1
maverick

released

3.1.3+build1+nobinonly-0ubuntu1
natty

released

3.1.3+build1+nobinonly-0ubuntu1
upstream

released

3.0.6

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

1.9.2.7+build2+nobinonly-0ubuntu1
hardy

released

1.9.2.7+build2+nobinonly-0ubuntu0.8.04.2
jaunty

released

1.9.2.7+build2+nobinonly-0ubuntu0.9.04.2
karmic

released

1.9.2.7+build2+nobinonly-0ubuntu0.9.10.2
lucid

released

1.9.2.7+build2+nobinonly-0ubuntu0.10.04.1
maverick

released

1.9.2.7+build2+nobinonly-0ubuntu1
natty

released

1.9.2.7+build2+nobinonly-0ubuntu1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 88%
0.04086
Низкий

9.3 Critical

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2010-2753

redhat
почти 15 лет назад

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a XUL tree element, which triggers a use-after-free.

nvd логотип

CVE-2010-2753

CVSS3: 8.8
nvd
почти 15 лет назад

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a XUL tree element, which triggers a use-after-free.

debian логотип

CVE-2010-2753

CVSS3: 8.8
debian
почти 15 лет назад

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x befo ...

github логотип

GHSA-m5jc-6mwc-7vc7

CVSS3: 8.8
github
около 3 лет назад

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a XUL tree element, which triggers a use-after-free.

oracle-oval логотип

ELSA-2010-0547

oracle-oval
почти 15 лет назад

ELSA-2010-0547: firefox security update (CRITICAL)

EPSS

Процентиль: 88%
0.04086
Низкий

9.3 Critical

CVSS2

8.8 High

CVSS3