Lucene search
SecurityvulnsSECURITYVULNS:DOC:23548HistoryApr 06, 2010 - 12:00 a.m.
Mozilla Foundation Security Advisory 2010-09
2010-04-0600:00:00
vulners.com
14
Mozilla Foundation Security Advisory 2010-09
Title: Deleted frame reuse in multipart/x-mixed-replace image
Impact: Moderate
Announced: March 23, 2010
Reporter: regenrecht (via TippingPoint's Zero Day Initiative)
Products: Firefox 3.6
Fixed in: Firefox 3.6.2
Description
Security researcher regenrecht reported (via TippingPoint's Zero Day Initiative) a potential reuse of a deleted image frame in Firefox 3.6's handling of multipart/x-mixed-replace images. Although no exploit was shown, re-use of freed memory has led to exploitable vulnerabilities in the past.
References
* https://bugzilla.mozilla.org/show_bug.cgi?id=547143
* CVE-2010-0164
Related
zdi
zdi
seebug
seebug
Mozilla Firefox 3.6 libpr0n库远程代码执行漏洞
2010-03-24 00:00:00
prion
prion
Design/Logic Flaw
2010-03-25 21:00:00
mozilla
mozilla
Deleted frame reuse in multipart/x-mixed-replace image — Mozilla
2010-03-23 00:00:00
securityvulns
securityvulns
ubuntucve
ubuntucve
CVE-2010-0164
2010-03-25 00:00:00
cve
cve
CVE-2010-0164
2010-03-25 21:00:00
openvas
openvas
Firefox Multiple Vulnerabilities Mar-10 (Windows)
2010-03-30 00:00:00
Firefox Multiple Vulnerabilities Mar-10 (Linux)
2010-03-30 00:00:00
Firefox Multiple Vulnerabilities (Mar 2010) - Windows
2010-03-30 00:00:00
nessus
nessus
Firefox 3.6.x < 3.6.2 Multiple Vulnerabilities
2010-03-23 00:00:00
Mozilla Firefox < 3.6.2 Multiple Vulnerabilities.
2010-03-23 00:00:00
Mandriva Linux Security Advisory : firefox (MDVSA-2010:070-1)
2010-04-14 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
Related for SECURITYVULNS:DOC:23548