Title: Plugin parameter EnsureCachedAttrParamArrays remote code execution vulnerability
Impact: Critical
Announced: July 20, 2010
Reporter: J23 (via TippingPoint's Zero Day Initiative)
Products: Firefox, SeaMonkey

Fixed in: Firefox 3.6.7
Firefox 3.5.11
SeaMonkey 2.0.6
Description

Security researcher J23 reported via TippingPoint's Zero Day Initiative an error in the code used to store the names and values of plugin parameter elements. A malicious page could embed plugin content containing a very large number of parameter elements which would cause an overflow in the integer value counting them. This integer is later used in allocating a memory buffer used to store the plugin parameters. Under such conditions, too small a buffer would be created and attacker-controlled data could be written past the end of the buffer, potentially resulting in code execution.
References

* https://bugzilla.mozilla.org/show_bug.cgi?id=572985
* CVE-2010-1214

cve 2

checkpoint_advisories 1

veracode 1

exploitpack 1

seebug 1

securityvulns 2

mozilla 1

prion 2

ubuntucve 2

packetstorm 1

zdi 1

exploitdb 1

openvas 68

nessus 39

oraclelinux 3

redhat 4

centos 4

debian 3

osv 1

fedora 16

ubuntu 5

freebsd 1

suse 1

gentoo 1

cve

CVE-2010-1214

2010-07-30 20:30:00

CVE-2010-2755

2010-07-30 13:26:00

checkpoint_advisories

Mozilla Products EnsureCachedAttrParamArrays Integer Overflow (CVE-2010-1214)

2010-11-14 00:00:00

veracode

Arbitrary Code Execution

2020-04-10 00:45:42

exploitpack

Mozilla Firefox 3.6.4 - Plugin EnsureCachedAttrParamArrays Remote Code Execution

2010-09-17 00:00:00

seebug

Firefox Plugin Parameter EnsureCachedAttrParamArrays - Remote Code Execution

2014-07-01 00:00:00

securityvulns

ZDI-10-132: Mozilla Firefox Plugin Parameter EnsureCachedAttrParamArrays Remote Code Execution Vulnerability

2010-07-24 00:00:00

Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities

2010-07-24 00:00:00

mozilla

Plugin parameter EnsureCachedAttrParamArrays remote code execution vulnerability — Mozilla

2010-07-20 00:00:00

prion

Integer overflow

2010-07-30 20:30:00

Memory corruption

2010-07-30 13:26:00

ubuntucve

CVE-2010-1214

2010-07-23 00:00:00

CVE-2010-2755

2010-07-24 00:00:00

packetstorm

Month Of Abysssec Undisclosed Bugs - Firefox Plugin Parameter

2010-09-18 00:00:00

zdi

Mozilla Firefox Plugin Parameter EnsureCachedAttrParamArrays Remote Code Execution Vulnerability

2010-07-20 00:00:00

exploitdb

Mozilla Firefox 3.6.4 - 'Plugin' EnsureCachedAttrParamArrays Remote Code Execution

2010-09-17 00:00:00

openvas

Mandriva Update for firefox MDVSA-2010:147 (firefox)

2010-08-13 00:00:00

FreeBSD Ports: firefox

2010-08-21 00:00:00

Mandriva Update for firefox MDVSA-2010:147 (firefox)

2010-08-13 00:00:00

nessus

Mandriva Linux Security Advisory : firefox (MDVSA-2010:147)

2010-08-12 00:00:00

Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64

2012-08-01 00:00:00

Debian DSA-2075-1 : xulrunner - several vulnerabilities

2010-07-29 00:00:00

oraclelinux

seamonkey security update

2010-07-21 00:00:00

thunderbird security update

2010-07-21 00:00:00

firefox security update

2010-07-21 00:00:00

redhat

(RHSA-2010:0546) Critical: seamonkey security update

2010-07-20 00:00:00

(RHSA-2010:0544) Moderate: thunderbird security update

2010-07-20 00:00:00

(RHSA-2010:0545) Critical: thunderbird security update

2010-07-20 00:00:00

centos

seamonkey security update

2010-08-16 21:36:58

thunderbird security update

2010-08-06 23:32:55

thunderbird security update

2010-07-22 14:50:56

debian

[SECURITY] [DSA 2075-1] New xulrunner packages fix several vulnerabilities

2010-07-27 19:47:37

[Backports-security-announce] Security Update for xulrunner

2010-07-21 09:30:33

[Backports-security-announce] Security Update for xulrunner

2010-07-21 09:30:16

osv

xulrunner - several vulnerabilities

2010-07-27 00:00:00

fedora

[SECURITY] Fedora 12 Update: seamonkey-2.0.6-1.fc12

2010-07-23 02:43:20

[SECURITY] Fedora 12 Update: galeon-2.0.7-24.fc12

2010-07-23 02:47:25

[SECURITY] Fedora 12 Update: perl-Gtk2-MozEmbed-0.08-6.fc12.14

2010-07-23 02:47:25

ubuntu

Firefox and Xulrunner vulnerability

2010-07-26 00:00:00

Firefox and Xulrunner vulnerability

2010-07-26 00:00:00

Firefox and Xulrunner vulnerabilities

2010-07-23 00:00:00

freebsd

mozilla -- multiple vulnerabilities

2010-07-20 00:00:00

suse

remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey

2010-07-30 13:10:04

gentoo

Mozilla Products: Multiple vulnerabilities

2013-01-08 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for SECURITYVULNS:DOC:24310