CVE-2009-1313 - The nsTextFrame::ClearTextRun function in layout/generic/nsTextFrameThebes.cpp in Mozilla Firefox 3.

CVE-2009-1313

Summary

The nsTextFrame::ClearTextRun function in layout/generic/nsTextFrameThebes.cpp in Mozilla Firefox 3.0.9 allows remote attackers to cause a denial of service (memory corruption) and probably execute arbitrary code via unspecified vectors. NOTE: this vulnerability reportedly exists because of an incorrect fix for CVE-2009-1302.

References

Vulnerable Configurations

cpe:2.3:a:mozilla:firefox:3.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:3.0.9:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 13-02-2023 - 01:17)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

oval via4

accepted

2013-04-29T04:05:45.927-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 4
oval oval:org.mitre.oval:def:11831
comment CentOS Linux 4.x
oval oval:org.mitre.oval:def:16636
comment Oracle Linux 4.x
oval oval:org.mitre.oval:def:15990
comment The operating system installed on the system is Red Hat Enterprise Linux 5
oval oval:org.mitre.oval:def:11414
comment The operating system installed on the system is CentOS Linux 5.x
oval oval:org.mitre.oval:def:15802
comment Oracle Linux 5.x
oval oval:org.mitre.oval:def:15459

description

family

unix

oval:org.mitre.oval:def:10446

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

version

redhat via4

advisories

bugzilla

id	497447
title	CVE-2009-1313 Firefox crash in nsTextFrame::ClearTextRun()

oval

comment Red Hat Enterprise Linux must be installed
oval oval:com.redhat.rhba:tst:20070304026

AND

comment Red Hat Enterprise Linux 4 is installed
oval oval:com.redhat.rhba:tst:20070304025
comment firefox is earlier than 0:3.0.10-1.el4
oval oval:com.redhat.rhsa:tst:20090449001
comment firefox is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20060200002

AND

comment Red Hat Enterprise Linux 5 is installed
oval oval:com.redhat.rhba:tst:20070331005

AND
comment xulrunner is earlier than 0:1.9.0.10-1.el5
oval oval:com.redhat.rhsa:tst:20090449004
comment xulrunner is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20080569002

AND

comment xulrunner-devel is earlier than 0:1.9.0.10-1.el5
oval oval:com.redhat.rhsa:tst:20090449006
comment xulrunner-devel is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20080569004

AND

comment xulrunner-devel-unstable is earlier than 0:1.9.0.10-1.el5
oval oval:com.redhat.rhsa:tst:20090449008
comment xulrunner-devel-unstable is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20080569006

AND
comment firefox is earlier than 0:3.0.10-1.el5
oval oval:com.redhat.rhsa:tst:20090449010
comment firefox is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20070097008

rhsa

id	RHSA-2009:0449
released	2009-04-27
severity	Critical
title	RHSA-2009:0449: firefox security update (Critical)

rpms

firefox-0:3.0.10-1.el4
firefox-0:3.0.10-1.el5
firefox-debuginfo-0:3.0.10-1.el4
firefox-debuginfo-0:3.0.10-1.el5
xulrunner-0:1.9.0.10-1.el5
xulrunner-debuginfo-0:1.9.0.10-1.el5
xulrunner-devel-0:1.9.0.10-1.el5
xulrunner-devel-unstable-0:1.9.0.10-1.el5

refmap via4

bid	34743
confirm	http://www.mozilla.org/security/announce/2009/mfsa2009-23.html https://bugzilla.mozilla.org/show_bug.cgi?id=489647 https://bugzilla.mozilla.org/show_bug.cgi?id=489676 https://bugzilla.mozilla.org/show_bug.cgi?id=490233 https://bugzilla.redhat.com/show_bug.cgi?id=497447
mandriva	MDVSA-2009:111
sectrack	1022126 1022127
secunia	34851 34866 34910 34919
slackware	SSA:2009-118-01
ubuntu	USN-765-1
vupen	ADV-2009-1180

Last major update

13-02-2023 - 01:17

Published

30-04-2009 - 21:30

Last modified

13-02-2023 - 01:17