CVE-2010-0183

Description

Use-after-free vulnerability in the nsCycleCollector::MarkRoots function in Mozilla Firefox 3.5.x before 3.5.10 and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a crafted HTML document, related to an improper frame construction process for menus.

CVSS Metrics

• v2.0•HIGH•Score: 9.3AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 5.24%• Percentile: 90%

Techniques & Countermeasures

• CWE-399•Resource Management Errors

  Weaknesses in this category are related to improper management of system resources.

Affected Systems

• mozilla•firefox

  3.5 | 3.5.1 | 3.5.2 | 3.5.3 | 3.5.4 | 3.5.5 | 3.5.6 | 3.5.7 | 3.5.9

• mozilla•seamonkey

  ≤ 2.0.4 | 1.0 | 1.0:alpha | 1.0:beta | 1.0.1 | 1.0.2 | 1.0.3 | 1.0.4 | 1.0.5 | 1.0.6 | 1.0.7 | 1.0.8 | 1.0.9 | 1.1 | 1.1:alpha | 1.1:beta | 1.1.1 | 1.1.2 | 1.1.3 | 1.1.4 | 1.1.5 | 1.1.6 | 1.1.7 | 1.1.8 | 1.1.9 | 1.1.10 | 1.1.11 | 1.1.12 | 1.1.13 | 1.1.14 | 1.1.15 | 1.1.16 | 1.1.17 | 1.1.18 | 1.1.19 | 2.0 | 2.0:alpha_1 | 2.0:alpha_2 | 2.0:alpha_3 | 2.0:beta_1 | 2.0:beta_2 | 2.0:rc1 | 2.0:rc2 | 2.0.1 | 2.0.2 | 2.0.3

References (13)

• http://secunia.com/advisories/40481
• http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043405.html
• http://www.securitytracker.com/id?1024138
• http://www.securityfocus.com/bid/41050
• http://www.mozilla.org/security/announce/2010/mfsa2010-27.html
• http://www.vupen.com/english/advisories/2010/1773
• https://bugzilla.mozilla.org/show_bug.cgi?id=557174
• http://www.vupen.com/english/advisories/2010/1592
• http://www.vupen.com/english/advisories/2010/1551
• http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12586
• http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043369.html
• http://secunia.com/advisories/40326