CVE-2009-0775

Description

Double free vulnerability in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to execute arbitrary code via "cloned XUL DOM elements which were linked as a parent and child," which are not properly handled during garbage collection.

CVSS Metrics

• v2.0•HIGH•Score: 10AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 6.59%• Percentile: 91%

Techniques & Countermeasures

• CWE-399•Resource Management Errors

  Weaknesses in this category are related to improper management of system resources.

Affected Systems

• mozilla•firefox

  ≤ 3.0.6 | 1.0 | 1.0.1 | 1.0.2 | 1.0.3 | 1.0.4 | 1.0.5 | 1.0.6 | 1.0.7 | 1.0.8 | 1.5 | 1.5.0.1 | 1.5.0.2 | 1.5.0.3 | 1.5.0.4 | 1.5.0.5 | 1.5.0.6 | 1.5.0.7 | 1.5.0.8 | 1.5.0.9 | 1.5.0.10 | 1.5.0.11 | 1.5.0.12 | 2.0 | 2.0.0.1 | 2.0.0.2 | 2.0.0.3 | 2.0.0.4 | 2.0.0.5 | 2.0.0.6 | 2.0.0.7 | 2.0.0.8 | 2.0.0.9 | 2.0.0.10 | 2.0.0.11 | 2.0.0.12 | 2.0.0.13 | 2.0.0.14 | 2.0.0.15 | 2.0.0.16 | 2.0.0.17 | 2.0.0.18 | 2.0.0.19 | 2.0.0.20 | 3.0 | 3.0.1 | 3.0.2 | 3.0.3 | 3.0.4 | 3.0.5

• mozilla•seamonkey

  ≤ 1.1.14 | 1.0 | 1.0.1 | 1.0.2 | 1.0.3 | 1.0.5 | 1.0.6 | 1.0.7 | 1.0.8 | 1.0.9 | 1.1 | 1.1:alpha | 1.1:beta | 1.1.1 | 1.1.2 | 1.1.3 | 1.1.4 | 1.1.5 | 1.1.6 | 1.1.7 | 1.1.8 | 1.1.9 | 1.1.10 | 1.1.11 | 1.1.12 | 1.1.13

• mozilla•thunderbird

  ≤ 2.0.0.20 | 2.0.0.0 | 2.0.0.4 | 2.0.0.5 | 2.0.0.6 | 2.0.0.9 | 2.0.0.12 | 2.0.0.14 | 2.0.0.16 | 2.0.0.17 | 2.0.0.18 | 2.0.0.19

References (27)

• http://www.redhat.com/support/errata/RHSA-2009-0315.html
• http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00002.html
• http://www.vupen.com/english/advisories/2009/0632
• http://www.securitytracker.com/id?1021796
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9681
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5806
• http://www.debian.org/security/2009/dsa-1751
• http://www.redhat.com/support/errata/RHSA-2009-0325.html
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7584
• http://www.redhat.com/support/errata/RHSA-2009-0258.html
• http://secunia.com/advisories/34140
• http://secunia.com/advisories/34272
• http://secunia.com/advisories/34417
• http://www.mozilla.org/security/announce/2009/mfsa2009-08.html
• http://secunia.com/advisories/34145
• https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00769.html
• https://bugzilla.mozilla.org/show_bug.cgi?id=474456
• https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00771.html
• http://secunia.com/advisories/34137
• http://support.avaya.com/elmodocs2/security/ASA-2009-069.htm
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6207
• http://secunia.com/advisories/34324
• http://www.mandriva.com/security/advisories?name=MDVSA-2009:075
• http://www.securityfocus.com/bid/33990
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5816
• http://secunia.com/advisories/34383
• http://support.avaya.com/japple/css/japple?temp.documentID=366362&temp.productID=154235&temp.releaseID=361845&temp.bucketID=126655&PAGE=Document