CVE-2010-1200

high

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14326

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10816

https://exchange.xforce.ibmcloud.com/vulnerabilities/59659

https://bugzilla.mozilla.org/show_bug.cgi?id=553938

https://bugzilla.mozilla.org/show_bug.cgi?id=551661

https://bugzilla.mozilla.org/show_bug.cgi?id=551233

https://bugzilla.mozilla.org/show_bug.cgi?id=534768

https://bugzilla.mozilla.org/show_bug.cgi?id=531176

https://bugzilla.mozilla.org/show_bug.cgi?id=509839

https://bugzilla.mozilla.org/show_bug.cgi?id=484890

http://www.vupen.com/english/advisories/2010/1773

http://www.vupen.com/english/advisories/2010/1640

http://www.vupen.com/english/advisories/2010/1592

http://www.vupen.com/english/advisories/2010/1557

http://www.vupen.com/english/advisories/2010/1556

http://www.vupen.com/english/advisories/2010/1551

http://www.ubuntu.com/usn/usn-930-2

http://www.securitytracker.com/id?1024139

http://www.securitytracker.com/id?1024138

http://www.securityfocus.com/bid/41090

http://www.securityfocus.com/bid/41050

http://www.redhat.com/support/errata/RHSA-2010-0501.html

http://www.redhat.com/support/errata/RHSA-2010-0500.html

http://www.redhat.com/support/errata/RHSA-2010-0499.html

http://www.mozilla.org/security/announce/2010/mfsa2010-26.html

http://www.mandriva.com/security/advisories?name=MDVSA-2010:125

http://ubuntu.com/usn/usn-930-1

http://support.avaya.com/css/P8/documents/100091069

http://secunia.com/advisories/40481

http://secunia.com/advisories/40401

http://secunia.com/advisories/40326

http://secunia.com/advisories/40323

http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043405.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043369.html

Details

Source: Mitre, NVD

Published: 2010-06-24

Updated: 2017-09-19

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High