vendor:
Firefox and Thunderbird
by:
SecurityFocus
7.5
CVSS
HIGH
Remote Memory-Corruption
119
CWE
Product Name: Firefox and Thunderbird
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009
Mozilla Firefox and Thunderbird Remote Memory-Corruption Vulnerability
Mozilla Firefox and Thunderbird are prone to a remote memory-corruption vulnerability that attackers can exploit to cause denial-of-service conditions and possibly execute arbitrary code. The vulnerability is fixed in Firefox 3.0.12 and 3.5. Note that Thunderbird is also affected but Mozilla hasn't specified the vulnerable and fixed versions.
Mitigation:
Upgrade to the latest version of Firefox and Thunderbird.