https://www.mozilla.org/en-US/security/advisories/mfsa2009-35/
https://www.mozilla.org/en-US/security/advisories/mfsa2009-41/
Severity: High
ID: 39853
File Name: mozilla_firefox_351.nasl
Version: 1.20
Type: local
Agent: windows
Family: Windows
Published: 7/17/2009
Updated: 7/16/2018
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Factor: High
Score: 8.9
Risk Factor: High
Base Score: 9.3
Temporal Score: 8.1
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CPE: cpe:/a:mozilla:firefox
Required KB Items: Mozilla/Firefox/Version
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 7/16/2009
Vulnerability Publication Date: 7/13/2009
CANVAS (CANVAS)
Core Impact
Metasploit (Firefox 3.5 escape() Return Value Memory Corruption)
CVE: CVE-2009-2467, CVE-2009-2477
CWE: 94