CVE-2009-0352

Severity

99%

Complexity

99%

Confidentiality

165%

Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the layout engine and destruction of arbitrary layout objects by the nsViewManager::Composite function.

Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the layout engine and destruction of arbitrary layout objects by the nsViewManager::Composite function.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Mozilla

First reported 16 years ago

2009-02-04 19:30:00

Last updated 6 years ago

2018-10-03 21:58:00

Affected Software

Mozilla Firefox 3.0

3.0

Mozilla Firefox 3.0.1

3.0.1

Mozilla Firefox 3.0.2

3.0.2

Mozilla Firefox 3.0.3

3.0.3

Mozilla Firefox 3.0.4

3.0.4

Mozilla Firefox 3.0.5

3.0.5

Mozilla SeaMonkey 1.0

1.0

Mozilla SeaMonkey 1.0.1

1.0.1

Mozilla SeaMonkey 1.0.2

1.0.2

Mozilla SeaMonkey 1.0.3

1.0.3

Mozilla SeaMonkey 1.0.5

1.0.5

Mozilla SeaMonkey 1.0.6

1.0.6

Mozilla SeaMonkey 1.0.7

1.0.7

Mozilla SeaMonkey 1.0.8

1.0.8

Mozilla SeaMonkey 1.0.9

1.0.9

Mozilla SeaMonkey 1.1

1.1

Mozilla SeaMonkey 1.1 alpha

1.1

Mozilla SeaMonkey 1.1 beta

1.1

Mozilla Seamonkey 1.1.1

1.1.1

Mozilla Seamonkey 1.1.2

1.1.2

Mozilla Seamonkey 1.1.3

1.1.3

Mozilla Seamonkey 1.1.4

1.1.4

Mozilla Seamonkey 1.1.5

1.1.5

Mozilla Seamonkey 1.1.6

1.1.6

Mozilla Seamonkey 1.1.7

1.1.7

Mozilla SeaMonkey 1.1.8

1.1.8

Mozilla SeaMonkey 1.1.9

1.1.9

Mozilla SeaMonkey 1.1.10

1.1.10

Mozilla SeaMonkey 1.1.11

1.1.11

Mozilla SeaMonkey 1.1.12

1.1.12

Mozilla SeaMonkey

Mozilla Thunderbird 1.0

1.0

Mozilla Thunderbird 1.0.2

1.0.2

Mozilla Thunderbird 1.0.5

1.0.5

Mozilla Thunderbird 1.0.6

1.0.6

Mozilla Thunderbird 1.0.7

1.0.7

Mozilla Thunderbird 1.0.8

1.0.8

Mozilla Thunderbird 1.5

1.5

Mozilla Thunderbird 1.5 Beta 2

1.5

Mozilla Thunderbird 1.5.0.2

1.5.0.2

Mozilla Thunderbird 1.5.0.4

1.5.0.4

Mozilla Thunderbird 1.5.0.5

1.5.0.5

Mozilla Thunderbird 1.5.0.7

1.5.0.7

Mozilla Thunderbird 1.5.0.8

1.5.0.8

Mozilla Thunderbird 1.5.0.9

1.5.0.9

Mozilla Thunderbird 1.5.0.10

1.5.0.10

Mozilla Thunderbird 1.5.0.12

1.5.0.12

Mozilla Thunderbird 1.5.0.13

1.5.0.13

Mozilla Thunderbird 1.5.0.14

1.5.0.14

Mozilla Thunderbird 2.0.0.0

2.0.0.0

Mozilla Thunderbird 2.0.0.4

2.0.0.4

Mozilla Thunderbird 2.0.0.5

2.0.0.5

Mozilla Thunderbird 2.0.0.6

2.0.0.6

Mozilla Thunderbird 2.0.0.9

2.0.0.9

Mozilla Thunderbird 2.0.0.12

2.0.0.12

Mozilla Thunderbird 2.0.0.14

2.0.0.14

Mozilla Thunderbird 2.0.0.16

2.0.0.16

Mozilla Thunderbird 2.0.0.17

2.0.0.17

Mozilla Thunderbird 2.0.0.18

2.0.0.18

Mozilla Thunderbird

References

SUSE-SA:2009:009

SUSE-SA:2009:023

RHSA-2009:0256

33799

33802

33808

33809

33816

33831

33841

33846

33869

34324

34387

34417

34462

34464

34527

SSA:2009-083-02

SSA:2009-083-03

http://support.avaya.com/elmodocs2/security/ASA-2009-040.htm

DSA-1830

MDVSA-2009:044

MDVSA-2009:083

http://www.mozilla.org/security/announce/2009/mfsa2009-01.html

Vendor Advisory

RHSA-2009:0257

RHSA-2009:0258

33598

1021663

USN-717-1

ADV-2009-0313

https://bugzilla.mozilla.org/show_bug.cgi?id=331088

https://bugzilla.mozilla.org/show_bug.cgi?id=401042

https://bugzilla.mozilla.org/show_bug.cgi?id=416461

https://bugzilla.mozilla.org/show_bug.cgi?id=420697

https://bugzilla.mozilla.org/show_bug.cgi?id=421839

https://bugzilla.mozilla.org/show_bug.cgi?id=422283

https://bugzilla.mozilla.org/show_bug.cgi?id=422301

https://bugzilla.mozilla.org/show_bug.cgi?id=431705

https://bugzilla.mozilla.org/show_bug.cgi?id=437142

https://bugzilla.mozilla.org/show_bug.cgi?id=449006

https://bugzilla.mozilla.org/show_bug.cgi?id=461027

oval:org.mitre.oval:def:10699

USN-741-1

FEDORA-2009-1399

FEDORA-2009-2882

FEDORA-2009-2884

FEDORA-2009-3101

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.