CVE-2009-1392

NONECVSS 0.0

0.0

The browser engine in Mozilla Firefox 3 before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1) nsEventStateManager::GetContentState and nsNativeTheme::CheckBooleanAttr; (2) UnhookTextRunFromFrames and ClearAllTextRunReferences; (3) nsTextFrame::ClearTextRun; (4) IsPercentageAware; (5) PL_DHashTableFinish; (6) nsListBoxBodyFrame::GetNextItemBox; (7) AtomTableClearEntry, related to the atom table, DOM mutation events, and Unicode surrogates; (8) nsHTMLEditor::HideResizers; and (9) nsWindow::SetCursor, related to changing the cursor; and other vectors.

🔗 References (98)

secalert@redhathttp://osvdb.org/55144
secalert@redhathttp://osvdb.org/55145
secalert@redhathttp://osvdb.org/55146
secalert@redhathttp://osvdb.org/55147
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2009-1096.html
secalert@redhathttp://secunia.com/advisories/35331
secalert@redhathttp://secunia.com/advisories/35415
secalert@redhathttp://secunia.com/advisories/35428
secalert@redhathttp://secunia.com/advisories/35431
secalert@redhathttp://secunia.com/advisories/35439
secalert@redhathttp://secunia.com/advisories/35440
secalert@redhathttp://secunia.com/advisories/35468
secalert@redhathttp://secunia.com/advisories/35536
secalert@redhathttp://secunia.com/advisories/35561
secalert@redhathttp://secunia.com/advisories/35602

Is Your Infrastructure Affected by CVE-2009-1392?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1392

📅 Published

🔄 Last Modified

🔗 References (98)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1392?