Denial of Service : Mozilla Firefox 'JavaScript' DoS Vulnerabilities (Sep 2009)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.900849
Category:	Denial of Service
Title:	Mozilla Firefox 'JavaScript' DoS Vulnerabilities (Sep 2009) - Linux
Summary:	Firefox browser is prone to Denial of Service vulnerabilities.
Description:	Summary: Firefox browser is prone to Denial of Service vulnerabilities. Vulnerability Insight: The flaws are due to multiple errors in the browser and JavaScript engines can be exploited to corrupt memory. Vulnerability Impact: A remote, unauthenticated attacker could execute arbitrary code or cause a vulnerable application to crash. Affected Software/OS: Mozilla Firefox version prior to 3.0.14 and 3.5 before 3.5.2 on Linux. Solution: Upgrade to Firefox version 3.0.14 or 3.5.2 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3071 36343 http://www.securityfocus.com/bid/36343 36670 http://secunia.com/advisories/36670 36671 http://secunia.com/advisories/36671 36692 http://secunia.com/advisories/36692 37098 http://secunia.com/advisories/37098 DSA-1885 http://www.debian.org/security/2009/dsa-1885 RHSA-2009:1430 http://www.redhat.com/support/errata/RHSA-2009-1430.html SUSE-SA:2009:048 http://www.novell.com/linux/security/advisories/2009_48_firefox.html http://www.mozilla.org/security/announce/2009/mfsa2009-47.html https://bugzilla.mozilla.org/show_bug.cgi?id=490196 https://bugzilla.mozilla.org/show_bug.cgi?id=493649 https://bugzilla.mozilla.org/show_bug.cgi?id=495444 https://bugzilla.mozilla.org/show_bug.cgi?id=502017 oval:org.mitre.oval:def:10698 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10698 oval:org.mitre.oval:def:5905 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5905 Common Vulnerability Exposure (CVE) ID: CVE-2009-3075 36669 http://secunia.com/advisories/36669 38977 http://secunia.com/advisories/38977 39001 http://secunia.com/advisories/39001 ADV-2010-0648 http://www.vupen.com/english/advisories/2010/0648 ADV-2010-0650 http://www.vupen.com/english/advisories/2010/0650 RHSA-2009:1431 http://www.redhat.com/support/errata/RHSA-2009-1431.html RHSA-2009:1432 http://www.redhat.com/support/errata/RHSA-2009-1432.html RHSA-2010:0153 http://www.redhat.com/support/errata/RHSA-2010-0153.html RHSA-2010:0154 http://www.redhat.com/support/errata/RHSA-2010-0154.html SUSE-SR:2010:013 http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html USN-915-1 http://www.ubuntu.com/usn/USN-915-1 http://www.mozilla.org/security/announce/2010/mfsa2010-07.html https://bugzilla.mozilla.org/show_bug.cgi?id=441714 https://bugzilla.mozilla.org/show_bug.cgi?id=505305 mozilla-javascript-engine-code-exec(53158) https://exchange.xforce.ibmcloud.com/vulnerabilities/53158 oval:org.mitre.oval:def:11365 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11365 oval:org.mitre.oval:def:5717 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5717
Copyright	Copyright (C) 2009 Greenbone AG