[Forgot Password]
Login  Register Subscribe

23631

 
 

126941

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2009-2535

Date: (C)2009-07-20   (M)2017-09-22 


Mozilla Firefox before 2.0.0.19 and 3.x before 3.0.5, SeaMonkey, and Thunderbird allow remote attackers to cause a denial of service (memory consumption and application crash) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.

CVSS Score: 5.0Access Vector: NETWORK
Exploit Score: 10.0Access Complexity: LOW
Impact Score: 2.9Authentication: NONE
 Confidentiality: NONE
 Integrity: NONE
 Availability: PARTIAL





Reference:
PS3....
PS3....
PS3....
PS3....
EXPLOIT-DB-9160
http://www.g-sec.lu/one-bug-to-rule-them-all.html
https://bugzilla.mozilla.org/show_bug.cgi?id=460713

CPE    165
cpe:/a:mozilla:thunderbird:2.0.14
cpe:/a:mozilla:seamonkey:1.1::alpha
cpe:/a:mozilla:seamonkey:1.1::beta
cpe:/a:mozilla:firefox:0.7
...
CWE    1
CWE-189

© 2013 SecPod Technologies