CVE Reference: CVE-2009-2467

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2009-2467

Description:
Mozilla Firefox before 3.0.12 and 3.5 before 3.5.1 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving a Flash object, a slow script dialog, and the unloading of the Flash plugin, which triggers attempted use of a deleted object.

CVE Status:
Candidate

References:

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html
  http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html

SUNALERT
  http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1

SAID
  Secunia Advisory: SA35914
  Secunia Advisory: SA35944
  Secunia Advisory: SA36145
  Secunia Advisory: SA36005

REDHAT
  http://rhn.redhat.com/errata/RHSA-2009-1162.html

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10473

FEDORA

CONFIRM
  http://www.mozilla.org/security/announce/2009/mfsa2009-35.html

BID
  35758


Return to the previous page.