Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2009-2479
Description:Mozilla Firefox 3.0.x, 3.5, and 3.5.1 on Windows allows remote attackers to cause a denial of service (uncaught exception and application crash) via a long Unicode string argument to the write method. NOTE: this was originally reported as a stack-based buffer overflow. NOTE: on Linux and Mac OS X, a crash resulting from this long string reportedly occurs in an operating-system library, not in Firefox.
Test IDs: 1.3.6.1.4.1.25623.1.0.64465  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-2479
BugTraq ID: 35707
http://www.securityfocus.com/bid/35707
Bugtraq: 20090719 DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome (Google Search)
http://www.securityfocus.com/archive/1/505092/100/0/threaded
http://www.exploit-db.com/exploits/9158
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html
http://websecurity.com.ua/3338/
https://bugzilla.mozilla.org/show_bug.cgi?id=504343
http://osvdb.org/55931
http://www.securitytracker.com/id?1022580
XForce ISS Database: firefox-unicode-data-dos(51729)
https://exchange.xforce.ibmcloud.com/vulnerabilities/51729




© 1998-2024 E-Soft Inc. All rights reserved.