CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3382

layout/base/nsCSSFrameConstructor.cpp in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 does not properly handle first-letter frames, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.174

EPSS Ranking 94.9%

CVSS Severity

CVSS v2 Score 10.0

References

Products affected by CVE-2009-3382

Mozilla » Firefox » Version: 3.0.1

cpe:2.3:a:mozilla:firefox:3.0.1
Mozilla » Firefox » Version: 3.0.10

cpe:2.3:a:mozilla:firefox:3.0.10
Mozilla » Firefox » Version: 3.0.11

cpe:2.3:a:mozilla:firefox:3.0.11
Mozilla » Firefox » Version: 3.0.12

cpe:2.3:a:mozilla:firefox:3.0.12
Mozilla » Firefox » Version: 3.0.13

cpe:2.3:a:mozilla:firefox:3.0.13
Mozilla » Firefox » Version: 3.0.14

cpe:2.3:a:mozilla:firefox:3.0.14
Mozilla » Firefox » Version: 3.0.2

cpe:2.3:a:mozilla:firefox:3.0.2
Mozilla » Firefox » Version: 3.0.3

cpe:2.3:a:mozilla:firefox:3.0.3
Mozilla » Firefox » Version: 3.0.4

cpe:2.3:a:mozilla:firefox:3.0.4
Mozilla » Firefox » Version: 3.0.5

cpe:2.3:a:mozilla:firefox:3.0.5
Mozilla » Firefox » Version: 3.0.6

cpe:2.3:a:mozilla:firefox:3.0.6
Mozilla » Firefox » Version: 3.0.7

cpe:2.3:a:mozilla:firefox:3.0.7
Mozilla » Firefox » Version: 3.0.8

cpe:2.3:a:mozilla:firefox:3.0.8
Mozilla » Firefox » Version: 3.0.9

cpe:2.3:a:mozilla:firefox:3.0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3382

Products

Pricing

Contact Us