Описание
Use-after-free vulnerability in the JSON.stringify method in js3250.dll in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, might allow remote attackers to execute arbitrary code via unspecified vectors related to the js_HasOwnProperty function and garbage collection.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| hardy | ignored | end of life |
| karmic | DNE | |
| lucid | released | 3.6.14+build3+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 3.6.14+build3+nobinonly-0ubuntu0.10.10.1 |
| natty | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| oneiric | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| precise | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| quantal | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 3.6.14+build3+nobinonly-0ubuntu0.8.04.1 |
| karmic | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| karmic | released | 3.6.14+build3+nobinonly-0ubuntu0.9.10.1 |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | ignored | end of life |
| karmic | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | not-affected | 2.0.13+nobinonly-0ubuntu1 |
| oneiric | not-affected | 2.0.13+nobinonly-0ubuntu1 |
| precise | DNE | |
| quantal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 1.9.2.14+build3+nobinonly-0ubuntu0.8.04.1 |
| karmic | released | 1.9.2.14+build3+nobinonly-0ubuntu0.9.10.1 |
| lucid | released | 1.9.2.14+build3+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 1.9.2.14+build3+nobinonly-0ubuntu0.10.10.1 |
| natty | not-affected | 1.9.2.14+build3+nobinonly-0ubuntu1 |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
EPSS
10 Critical
CVSS2
Связанные уязвимости
Use-after-free vulnerability in the JSON.stringify method in js3250.dll in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, might allow remote attackers to execute arbitrary code via unspecified vectors related to the js_HasOwnProperty function and garbage collection.
Use-after-free vulnerability in the JSON.stringify method in js3250.dll in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, might allow remote attackers to execute arbitrary code via unspecified vectors related to the js_HasOwnProperty function and garbage collection.
Use-after-free vulnerability in the JSON.stringify method in js3250.dl ...
Use-after-free vulnerability in the JSON.stringify method in js3250.dll in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, might allow remote attackers to execute arbitrary code via unspecified vectors related to the js_HasOwnProperty function and garbage collection.
ELSA-2011-0310: firefox security and bug fix update (CRITICAL)
EPSS
10 Critical
CVSS2