Mozilla Firefox up to 3.0.5 Design Engine resource management

| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.6 | $0-$5k | 0.00 |
Summary
A vulnerability was found in Mozilla Firefox up to 3.0.5 and classified as problematic. This affects an unknown function of the component Design Engine. The manipulation results in resource management. This vulnerability is cataloged as CVE-2009-0352. There is no exploit available. It is suggested to upgrade the affected component.
Details
A vulnerability classified as critical has been found in Mozilla Firefox up to 3.0.5 (Web Browser). Affected is an unknown code of the component Design Engine. The manipulation with an unknown input leads to a resource management vulnerability. CWE is classifying the issue as CWE-399. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the layout engine and destruction of arbitrary layout objects by the nsViewManager::Composite function.
The weakness was shared 02/04/2009 by Martijn Wargers (moz_bug_r_a4) with Mozilla (Website). The advisory is shared for download at secunia.com. This vulnerability is traded as CVE-2009-0352 since 01/29/2009. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. There are neither technical details nor an exploit publicly available.
It is declared as proof-of-concept. As 0-day the estimated underground price was around $100k and more. The vulnerability scanner Nessus provides a plugin with the ID 67797 (Oracle Linux 4 : thunderbird (ELSA-2009-0258)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Oracle Linux Local Security Checks and running in the context l. The commercial vulnerability scanner Qualys is able to test this issue with plugin 116184 (Mozilla Firefox/Thunderbird/SeaMonkey Multiple Vulnerabilities (MFSA 2009-01 to -06 RHSA-2009:0256 RHSA-2009:0257)).
Upgrading eliminates this vulnerability. A possible mitigation has been published 1 weeks after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (67797), SecurityFocus (BID 33598†), OSVDB (51940†), Secunia (SA34527†) and SecurityTracker (ID 1021663†). The entries VDB-3928, VDB-3930, VDB-3929 and VDB-3925 are related to this item. Once again VulDB remains the best source for vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.mozilla.org/
- Product: https://www.mozilla.org/en-US/firefox/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 6.6
VulDB Base Score: 7.3
VulDB Temp Score: 6.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Resource managementCWE: CWE-399 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 67797
Nessus Name: Oracle Linux 4 : thunderbird (ELSA-2009-0258)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Nessus Port: 🔍
OpenVAS ID: 64417
OpenVAS Name: Debian Security Advisory DSA 1830-1 (icedove)
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Timeline
01/29/2009 🔍02/03/2009 🔍
02/04/2009 🔍
02/04/2009 🔍
02/04/2009 🔍
02/04/2009 🔍
02/11/2009 🔍
02/19/2009 🔍
03/31/2009 🔍
07/12/2013 🔍
04/28/2019 🔍
Sources
Vendor: mozilla.orgProduct: mozilla.org
Advisory: secunia.com⛔
Researcher: Martijn Wargers (moz_bug_r_a4)
Organization: Mozilla
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2009-0352 (🔍)
GCVE (CVE): GCVE-0-2009-0352
GCVE (VulDB): GCVE-100-3924
OVAL: 🔍
SecurityFocus: 33598 - Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009 -01 to -06 Multiple Remote Vulnerabilities
Secunia: 34527 - Fedora update for seamonkey, Highly Critical
OSVDB: 51940 - Mozilla Multiple Products Layout Engine nsStyleContext::Destroy Multiple Method Memory Corruption
SecurityTracker: 1021663
Vupen: ADV-2009-0313
See also: 🔍
Entry
Created: 02/19/2009 17:15Updated: 04/28/2019 12:06
Changes: 02/19/2009 17:15 (93), 04/28/2019 12:06 (1)
Complete: 🔍
Cache ID: 216::103
Once again VulDB remains the best source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.