ID CVE-2010-1203
Summary The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp.
References
Vulnerable Configurations
  • cpe:2.3:a:mozilla:firefox:3.6:*:*:*:*:*:*:*
    cpe:2.3:a:mozilla:firefox:3.6:*:*:*:*:*:*:*
  • cpe:2.3:a:mozilla:firefox:3.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:mozilla:firefox:3.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mozilla:firefox:3.6.3:*:*:*:*:*:*:*
    cpe:2.3:a:mozilla:firefox:3.6.3:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 19-09-2017 - 01:30)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
oval via4
  • accepted 2013-04-29T04:05:20.974-04:00
    class vulnerability
    contributors
    • name Aharon Chernin
      organization SCAP.com, LLC
    • name Dragos Prisaca
      organization G2, Inc.
    definition_extensions
    • comment The operating system installed on the system is Red Hat Enterprise Linux 4
      oval oval:org.mitre.oval:def:11831
    • comment CentOS Linux 4.x
      oval oval:org.mitre.oval:def:16636
    • comment Oracle Linux 4.x
      oval oval:org.mitre.oval:def:15990
    • comment The operating system installed on the system is Red Hat Enterprise Linux 5
      oval oval:org.mitre.oval:def:11414
    • comment The operating system installed on the system is CentOS Linux 5.x
      oval oval:org.mitre.oval:def:15802
    • comment Oracle Linux 5.x
      oval oval:org.mitre.oval:def:15459
    description The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp.
    family unix
    id oval:org.mitre.oval:def:10401
    status accepted
    submitted 2010-07-09T03:56:16-04:00
    title The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp.
    version 25
  • accepted 2014-10-06T04:04:36.504-04:00
    class vulnerability
    contributors
    • name Nikita MR
      organization SecPod Technologies
    • name Sergey Artykhov
      organization ALTX-SOFT
    • name Sergey Artykhov
      organization ALTX-SOFT
    • name Evgeniy Pavlov
      organization ALTX-SOFT
    • name Evgeniy Pavlov
      organization ALTX-SOFT
    • name Evgeniy Pavlov
      organization ALTX-SOFT
    definition_extensions
    comment Mozilla Firefox Mainline release is installed
    oval oval:org.mitre.oval:def:22259
    description The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp.
    family windows
    id oval:org.mitre.oval:def:8317
    status accepted
    submitted 2010-07-07T10:30:56
    title Mozilla Firefox jstracer.cpp Memory Corruption Vulnerability
    version 25
redhat via4
advisories
  • bugzilla
    id 590850
    title CVE-2010-1197 Mozilla Content-Disposition: attachment ignored if Content-Type: multipart also present
    oval
    AND
    • comment Red Hat Enterprise Linux 4 is installed
      oval oval:com.redhat.rhba:tst:20070304001
    • comment firefox is earlier than 0:3.6.4-8.el4
      oval oval:com.redhat.rhsa:tst:20100500002
    • comment firefox is signed with Red Hat master key
      oval oval:com.redhat.rhsa:tst:20060733003
    rhsa
    id RHSA-2010:0500
    released 2010-06-22
    severity ritical
    title RHSA-2010:0500: firefox security, bug fix, and enhancement update (Critical)
  • bugzilla
    id 590850
    title CVE-2010-1197 Mozilla Content-Disposition: attachment ignored if Content-Type: multipart also present
    oval
    AND
    • comment Red Hat Enterprise Linux 5 is installed
      oval oval:com.redhat.rhba:tst:20070331001
    • OR
      • AND
        • comment devhelp is earlier than 0:0.12-21.el5
          oval oval:com.redhat.rhsa:tst:20100501002
        • comment devhelp is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20070097003
      • AND
        • comment devhelp-devel is earlier than 0:0.12-21.el5
          oval oval:com.redhat.rhsa:tst:20100501004
        • comment devhelp-devel is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20070097005
      • AND
        • comment gnome-python2-extras is earlier than 0:2.14.2-7.el5
          oval oval:com.redhat.rhsa:tst:20100501006
        • comment gnome-python2-extras is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501007
      • AND
        • comment gnome-python2-gtkhtml2 is earlier than 0:2.14.2-7.el5
          oval oval:com.redhat.rhsa:tst:20100501010
        • comment gnome-python2-gtkhtml2 is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501011
      • AND
        • comment gnome-python2-gtkmozembed is earlier than 0:2.14.2-7.el5
          oval oval:com.redhat.rhsa:tst:20100501008
        • comment gnome-python2-gtkmozembed is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501009
      • AND
        • comment gnome-python2-gtkspell is earlier than 0:2.14.2-7.el5
          oval oval:com.redhat.rhsa:tst:20100501012
        • comment gnome-python2-gtkspell is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501013
      • AND
        • comment gnome-python2-libegg is earlier than 0:2.14.2-7.el5
          oval oval:com.redhat.rhsa:tst:20100501014
        • comment gnome-python2-libegg is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501015
      • AND
        • comment esc is earlier than 0:1.1.0-12.el5
          oval oval:com.redhat.rhsa:tst:20100501016
        • comment esc is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501017
      • AND
        • comment totem is earlier than 0:2.16.7-7.el5
          oval oval:com.redhat.rhsa:tst:20100501018
        • comment totem is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501019
      • AND
        • comment totem-devel is earlier than 0:2.16.7-7.el5
          oval oval:com.redhat.rhsa:tst:20100501020
        • comment totem-devel is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501021
      • AND
        • comment totem-mozplugin is earlier than 0:2.16.7-7.el5
          oval oval:com.redhat.rhsa:tst:20100501022
        • comment totem-mozplugin is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20100501023
      • AND
        • comment yelp is earlier than 0:2.16.0-26.el5
          oval oval:com.redhat.rhsa:tst:20100501024
        • comment yelp is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20070097007
      • AND
        • comment firefox is earlier than 0:3.6.4-8.el5
          oval oval:com.redhat.rhsa:tst:20100501026
        • comment firefox is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20070097009
      • AND
        • comment xulrunner is earlier than 0:1.9.2.4-10.el5
          oval oval:com.redhat.rhsa:tst:20100501028
        • comment xulrunner is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20080569003
      • AND
        • comment xulrunner-devel is earlier than 0:1.9.2.4-10.el5
          oval oval:com.redhat.rhsa:tst:20100501030
        • comment xulrunner-devel is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20080569005
    rhsa
    id RHSA-2010:0501
    released 2010-06-22
    severity Critical
    title RHSA-2010:0501: firefox security, bug fix, and enhancement update (Critical)
rpms
  • firefox-0:3.6.4-8.el4
  • devhelp-0:0.12-21.el5
  • devhelp-devel-0:0.12-21.el5
  • gnome-python2-extras-0:2.14.2-7.el5
  • gnome-python2-gtkhtml2-0:2.14.2-7.el5
  • gnome-python2-gtkmozembed-0:2.14.2-7.el5
  • gnome-python2-gtkspell-0:2.14.2-7.el5
  • gnome-python2-libegg-0:2.14.2-7.el5
  • esc-0:1.1.0-12.el5
  • totem-0:2.16.7-7.el5
  • totem-devel-0:2.16.7-7.el5
  • totem-mozplugin-0:2.16.7-7.el5
  • yelp-0:2.16.0-26.el5
  • firefox-0:3.6.4-8.el5
  • xulrunner-0:1.9.2.4-10.el5
  • xulrunner-devel-0:1.9.2.4-10.el5
refmap via4
bid
  • 41050
  • 41099
confirm
mandriva MDVSA-2010:125
sectrack
  • 1024138
  • 1024139
secunia
  • 40323
  • 40326
  • 40401
  • 40481
suse SUSE-SA:2010:030
ubuntu
  • USN-930-1
  • USN-930-2
vupen
  • ADV-2010-1551
  • ADV-2010-1557
  • ADV-2010-1640
  • ADV-2010-1773
xf mozilla-firefox-javascript-ce(59662)
Last major update 19-09-2017 - 01:30
Published 24-06-2010 - 12:30
Back to Top