CVE-2010-0177

by Fred · 05/04/2010

Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2, and SeaMonkey before 2.0.4, frees the contents of the window.navigator.plugins array while a reference to an array element is still active, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors, related to a "dangling pointer vulnerability."

Date published : 2010-04-05

http://www.securityfocus.com/archive/1/510540/100/0/threaded

http://www.mozilla.org/security/announce/2010/mfsa2010-19.html

CVE-2010-0177

Similar

Recent Posts

Categories

CVE-2010-0177

Share this:

Similar

Recent Posts

Categories

Tags