Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:22196
HistoryJul 22, 2009 - 12:00 a.m.

Mozilla Foundation Security Advisory 2009-41

2009-07-2200:00:00
vulners.com
35
JSON

Mozilla Foundation Security Advisory 2009-41

Title: Corrupt JIT state after deep return from native function
Impact: Critical
Announced: July 16, 2009
Reporter: zbyte
Products: Firefox 3.5

Fixed in: Firefox 3.5.1
Description

Firefox user zbyte reported a crash that we determined could result in an exploitable memory corruption problem. In certain cases after a return from a native function, such as escape(), the Just-in-Time (JIT) compiler could get into a corrupt state. This could be exploited by an attacker to run arbitrary code such as installing malware.

We would like to thank community members Lucas Kruijswijk and Nochum Sossonko for isolating the problematic script from the original crashing site.

This vulnerability does not affect earlier versions of Firefox which do not support the JIT feature.
Workaround

Users of Firefox 3.5 can avoid this vulnerability by disabling the Just-in-Time compiler as described in the Mozilla Security Blog. That workaround is not necessary in Firefox 3.5.1 and can be reverted.
References

* https://bugzilla.mozilla.org/show_bug.cgi?id=503286
* Critical JavaScript vulnerability in Firefox 3.5, Mozilla Security Blog
* CVE-2009-2477

Related

checkpoint_advisories 3
prion 1
openvas 9
ubuntucve 1
saint 4
zdt 1
canvas 1
mozilla 1
cve 1
nessus 4
freebsd 1
fedora 20
securityvulns 1
gentoo 1
checkpoint_advisories
checkpoint_advisories
Update Protection against Mozilla Firefox JIT escape Function Memory Corruption
2010-03-25 00:00:00
Mozilla Firefox JIT escape Function Memory Corruption - Ver2 (CVE-2009-2477)
2014-04-16 00:00:00
Mozilla Firefox JIT escape Function Memory Corruption - Ver2 (CVE-2009-2477)
2014-04-16 00:00:00
prion
prion
Design/Logic Flaw
2009-07-15 15:30:00
openvas
openvas
Mozilla Firefox JavaScript Compiler Code Execution Vulnerability (Linux)
2009-07-17 00:00:00
Mozilla Firefox JavaScript Compiler Code Execution Vulnerability (Windows)
2009-07-17 00:00:00
Mozilla Firefox JavaScript Compiler Code Execution Vulnerability (Windows)
2009-07-17 00:00:00
ubuntucve
ubuntucve
CVE-2009-2477
2009-07-15 00:00:00
saint
saint
Mozilla Firefox JIT Escape Function Memory Corruption
2009-07-13 00:00:00
Mozilla Firefox JIT Escape Function Memory Corruption
2009-07-13 00:00:00
Mozilla Firefox JIT Escape Function Memory Corruption
2009-07-13 00:00:00
zdt
zdt
Naenara Browser 3.5 (RedStar 3.0 Desktop) - JACKRABBIT Client-Side Command Execution Exploit
2016-12-19 00:00:00
canvas
canvas
Immunity Canvas: FIREFOX_35
2009-07-15 15:30:00
mozilla
mozilla
Corrupt JIT state after deep return from native function — Mozilla
2009-07-16 00:00:00
cve
cve
CVE-2009-2477
2009-07-15 15:30:00
nessus
nessus
FreeBSD : mozilla -- corrupt JIT state after deep return from native function (c1ef9b33-72a6-11de-82ea-0030843d3802)
2009-07-20 00:00:00
Firefox 3.5.x < 3.5.1 Multiple Vulnerabilities
2009-07-17 00:00:00
Fedora 11 : kazehakase-0.5.6-11.svn3771_trunk.fc11.3 / Miro-2.0.5-2.fc11 / blam-1.8.5-12.fc11 / etc (2009-7898)
2009-07-23 00:00:00
freebsd
freebsd
mozilla -- corrupt JIT state after deep return from native function
2009-07-16 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: hulahop-0.4.9-6.fc11
2009-07-22 22:03:48
[SECURITY] Fedora 11 Update: yelp-2.26.0-5.fc11
2009-07-22 22:03:48
[SECURITY] Fedora 11 Update: java-1.6.0-openjdk-1.6.0.0-25.b16.fc11
2009-07-22 22:03:48
securityvulns
securityvulns
Multiple Mozilla Firefox security vulnerabilities
2009-07-22 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
JSON
Related for SECURITYVULNS:DOC:22196
checkpoint_advisories3prion1openvas9ubuntucve1saint4zdt1canvas1mozilla1cve1nessus4freebsd1fedora20securityvulns1gentoo1