Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2010-0175 | First vendor Publication | 2010-04-05 |
Vendor | Cve | Last vendor Modification | 2018-10-30 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors that trigger a call to the handler for the select event for XUL tree items. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0175 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-399 | Resource Management Errors |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:7546 | |||
Oval ID: | oval:org.mitre.oval:def:7546 | ||
Title: | Mozilla Firefox/Thunderbird/SeaMonkey nsTreeSelection Use-After-Free Vulnerability | ||
Description: | Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors that trigger a call to the handler for the select event for XUL tree items. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0175 | Version: | 24 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:9834 | |||
Oval ID: | oval:org.mitre.oval:def:9834 | ||
Title: | Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors that trigger a call to the handler for the select event for XUL tree items. | ||
Description: | Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors that trigger a call to the handler for the select event for XUL tree items. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2010-0175 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2011-08-09 | Name : CentOS Update for thunderbird CESA-2010:0545 centos5 i386 File : nvt/gb_CESA-2010_0545_thunderbird_centos5_i386.nasl |
2010-07-23 | Name : RedHat Update for thunderbird RHSA-2010:0544-01 File : nvt/gb_RHSA-2010_0544-01_thunderbird.nasl |
2010-04-29 | Name : Mandriva Update for firefox MDVSA-2010:070-1 (firefox) File : nvt/gb_mandriva_MDVSA_2010_070_1.nasl |
2010-04-29 | Name : SuSE Update for MozillaFirefox,MozillaThunderbird,seamonkey,mozilla-nss SUSE-... File : nvt/gb_suse_2010_021.nasl |
2010-04-21 | Name : Debian Security Advisory DSA 2027-1 (xulrunner) File : nvt/deb_2027_1.nasl |
2010-04-19 | Name : Mandriva Update for firefox MDVA-2010:121 (firefox) File : nvt/gb_mandriva_MDVA_2010_121.nasl |
2010-04-16 | Name : Ubuntu Update for Firefox 3.5 and Xulrunner vulnerabilities USN-921-1 File : nvt/gb_ubuntu_USN_921_1.nasl |
2010-04-16 | Name : Mandriva Update for firefox-ext-plasmanotify MDVA-2010:118 (firefox-ext-plasm... File : nvt/gb_mandriva_MDVA_2010_118.nasl |
2010-04-16 | Name : Mandriva Update for firefox MDVSA-2010:070 (firefox) File : nvt/gb_mandriva_MDVSA_2010_070.nasl |
2010-04-16 | Name : Ubuntu Update for Firefox 3.0 and Xulrunner vulnerabilities USN-920-1 File : nvt/gb_ubuntu_USN_920_1.nasl |
2010-04-13 | Name : Mozilla Products 'nsTreeSelection' Denial of Service vulnerability (Windows) File : nvt/gb_mozilla_prdts_ns_tree_code_exec_vuln_win.nasl |
2010-04-09 | Name : CentOS Update for seamonkey CESA-2010:0333 centos4 i386 File : nvt/gb_CESA-2010_0333_seamonkey_centos4_i386.nasl |
2010-04-09 | Name : CentOS Update for seamonkey CESA-2010:0333 centos3 i386 File : nvt/gb_CESA-2010_0333_seamonkey_centos3_i386.nasl |
2010-04-09 | Name : CentOS Update for firefox CESA-2010:0332 centos4 i386 File : nvt/gb_CESA-2010_0332_firefox_centos4_i386.nasl |
2010-04-06 | Name : Fedora Update for hulahop FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_hulahop_fc11.nasl |
2010-04-06 | Name : Fedora Update for gnome-python2-extras FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_gnome-python2-extras_fc11.nasl |
2010-04-06 | Name : Fedora Update for kazehakase FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_kazehakase_fc11.nasl |
2010-04-06 | Name : Fedora Update for mozvoikko FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_mozvoikko_fc11.nasl |
2010-04-06 | Name : Fedora Update for pcmanx-gtk2 FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_pcmanx-gtk2_fc11.nasl |
2010-04-06 | Name : Fedora Update for perl-Gtk2-MozEmbed FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_perl-Gtk2-MozEmbed_fc11.nasl |
2010-04-06 | Name : Fedora Update for xulrunner FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_xulrunner_fc11.nasl |
2010-04-06 | Name : Fedora Update for yelp FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_yelp_fc11.nasl |
2010-04-06 | Name : Fedora Update for sunbird FEDORA-2010-5526 File : nvt/gb_fedora_2010_5526_sunbird_fc11.nasl |
2010-04-06 | Name : Fedora Update for thunderbird FEDORA-2010-5526 File : nvt/gb_fedora_2010_5526_thunderbird_fc11.nasl |
2010-04-06 | Name : Fedora Update for sunbird FEDORA-2010-5539 File : nvt/gb_fedora_2010_5539_sunbird_fc12.nasl |
2010-04-06 | Name : Fedora Update for thunderbird FEDORA-2010-5539 File : nvt/gb_fedora_2010_5539_thunderbird_fc12.nasl |
2010-04-06 | Name : Fedora Update for seamonkey FEDORA-2010-5840 File : nvt/gb_fedora_2010_5840_seamonkey_fc12.nasl |
2010-04-06 | Name : Fedora Update for perl-Gtk2-MozEmbed FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_perl-Gtk2-MozEmbed_fc12.nasl |
2010-04-06 | Name : FreeBSD Ports: seamonkey File : nvt/freebsd_seamonkey0.nasl |
2010-04-06 | Name : RedHat Update for firefox RHSA-2010:0332-01 File : nvt/gb_RHSA-2010_0332-01_firefox.nasl |
2010-04-06 | Name : RedHat Update for seamonkey RHSA-2010:0333-01 File : nvt/gb_RHSA-2010_0333-01_seamonkey.nasl |
2010-04-06 | Name : Fedora Update for Miro FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_Miro_fc12.nasl |
2010-04-06 | Name : Fedora Update for firefox FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_firefox_fc12.nasl |
2010-04-06 | Name : Fedora Update for galeon FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_galeon_fc12.nasl |
2010-04-06 | Name : Fedora Update for gnome-python2-extras FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_gnome-python2-extras_fc12.nasl |
2010-04-06 | Name : Fedora Update for gnome-web-photo FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_gnome-web-photo_fc12.nasl |
2010-04-06 | Name : Fedora Update for mozvoikko FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_mozvoikko_fc12.nasl |
2010-04-06 | Name : Fedora Update for google-gadgets FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_google-gadgets_fc11.nasl |
2010-04-06 | Name : Fedora Update for xulrunner FEDORA-2010-5506 File : nvt/gb_fedora_2010_5506_xulrunner_fc12.nasl |
2010-04-06 | Name : Fedora Update for Miro FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_Miro_fc11.nasl |
2010-04-06 | Name : Fedora Update for blam FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_blam_fc11.nasl |
2010-04-06 | Name : Fedora Update for chmsee FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_chmsee_fc11.nasl |
2010-04-06 | Name : Fedora Update for epiphany-extensions FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_epiphany-extensions_fc11.nasl |
2010-04-06 | Name : Fedora Update for epiphany FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_epiphany_fc11.nasl |
2010-04-06 | Name : Fedora Update for evolution-rss FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_evolution-rss_fc11.nasl |
2010-04-06 | Name : Fedora Update for firefox FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_firefox_fc11.nasl |
2010-04-06 | Name : Fedora Update for galeon FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_galeon_fc11.nasl |
2010-04-06 | Name : Fedora Update for gnome-web-photo FEDORA-2010-5515 File : nvt/gb_fedora_2010_5515_gnome-web-photo_fc11.nasl |
2010-02-22 | Name : Mandriva Update for blogtk MDVA-2010:070-1 (blogtk) File : nvt/gb_mandriva_MDVA_2010_070_1.nasl |
2010-02-19 | Name : Mandriva Update for blogtk MDVA-2010:070 (blogtk) File : nvt/gb_mandriva_MDVA_2010_070.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
63463 | Mozilla Multiple Browsers nsTreeSelection Event Handler Manipulation Arbitrar... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-07-12 | Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2010-0544.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0333.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0332.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0545.nasl - Type : ACT_GATHER_INFO |
2013-01-08 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201301-01.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing a security update. File : sl_20100720_thunderbird_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing a security update. File : sl_20100720_thunderbird_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100330_seamonkey_on_SL3_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100330_firefox_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing a security update. File : sl_20100330_firefox_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
2011-03-17 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_MozillaFirefox-100407.nasl - Type : ACT_GATHER_INFO |
2011-03-17 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_mozilla-xulrunner190-100407.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_MozillaFirefox-100406.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_mozilla-xulrunner190-100406.nasl - Type : ACT_GATHER_INFO |
2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_mozilla-xulrunner190-6971.nasl - Type : ACT_GATHER_INFO |
2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_MozillaFirefox-6979.nasl - Type : ACT_GATHER_INFO |
2010-08-09 | Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0544.nasl - Type : ACT_GATHER_INFO |
2010-07-28 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0544.nasl - Type : ACT_GATHER_INFO |
2010-07-23 | Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0545.nasl - Type : ACT_GATHER_INFO |
2010-07-01 | Name : The remote Fedora host is missing a security update. File : fedora_2010-6236.nasl - Type : ACT_GATHER_INFO |
2010-07-01 | Name : The remote Fedora host is missing one or more security updates. File : fedora_2010-5506.nasl - Type : ACT_GATHER_INFO |
2010-07-01 | Name : The remote Fedora host is missing one or more security updates. File : fedora_2010-5515.nasl - Type : ACT_GATHER_INFO |
2010-07-01 | Name : The remote Fedora host is missing one or more security updates. File : fedora_2010-5526.nasl - Type : ACT_GATHER_INFO |
2010-07-01 | Name : The remote Fedora host is missing one or more security updates. File : fedora_2010-5539.nasl - Type : ACT_GATHER_INFO |
2010-07-01 | Name : The remote Fedora host is missing one or more security updates. File : fedora_2010-5561.nasl - Type : ACT_GATHER_INFO |
2010-07-01 | Name : The remote Fedora host is missing a security update. File : fedora_2010-5840.nasl - Type : ACT_GATHER_INFO |
2010-05-11 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0332.nasl - Type : ACT_GATHER_INFO |
2010-05-11 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0333.nasl - Type : ACT_GATHER_INFO |
2010-04-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_firefox35upgrade-100407.nasl - Type : ACT_GATHER_INFO |
2010-04-14 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-070.nasl - Type : ACT_GATHER_INFO |
2010-04-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_MozillaFirefox-100412.nasl - Type : ACT_GATHER_INFO |
2010-04-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_mozilla-xulrunner190-100407.nasl - Type : ACT_GATHER_INFO |
2010-04-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_firefox35upgrade-100407.nasl - Type : ACT_GATHER_INFO |
2010-04-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_MozillaFirefox-branding-openSUSE-100413.nasl - Type : ACT_GATHER_INFO |
2010-04-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_mozilla-xulrunner190-100407.nasl - Type : ACT_GATHER_INFO |
2010-04-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_MozillaFirefox-6970.nasl - Type : ACT_GATHER_INFO |
2010-04-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_MozillaThunderbird-100406.nasl - Type : ACT_GATHER_INFO |
2010-04-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_seamonkey-100406.nasl - Type : ACT_GATHER_INFO |
2010-04-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_mozilla-xulrunner190-6976.nasl - Type : ACT_GATHER_INFO |
2010-04-12 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-920-1.nasl - Type : ACT_GATHER_INFO |
2010-04-12 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-921-1.nasl - Type : ACT_GATHER_INFO |
2010-04-09 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0333.nasl - Type : ACT_GATHER_INFO |
2010-04-09 | Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0332.nasl - Type : ACT_GATHER_INFO |
2010-04-05 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2027.nasl - Type : ACT_GATHER_INFO |
2010-03-31 | Name : The remote Windows host contains a web browser that is affected by multiple v... File : seamonkey_204.nasl - Type : ACT_GATHER_INFO |
2010-03-31 | Name : The remote Windows host contains a mail client that is affected by multiple v... File : mozilla_thunderbird_304.nasl - Type : ACT_GATHER_INFO |
2010-03-31 | Name : The remote Windows host contains a web browser that is affected by multiple v... File : mozilla_firefox_359.nasl - Type : ACT_GATHER_INFO |
2010-03-31 | Name : The remote Windows host contains a web browser that is affected by multiple v... File : mozilla_firefox_3019.nasl - Type : ACT_GATHER_INFO |
2010-03-31 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_9ccfee393c3b11df9edc000f20797ede.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-02-10 01:11:48 |
|
2024-02-02 01:12:29 |
|
2024-02-01 12:03:27 |
|
2023-09-05 12:11:44 |
|
2023-09-05 01:03:19 |
|
2023-09-02 12:11:46 |
|
2023-09-02 01:03:20 |
|
2023-08-12 12:13:57 |
|
2023-08-12 01:03:20 |
|
2023-08-11 12:11:50 |
|
2023-08-11 01:03:28 |
|
2023-08-06 12:11:22 |
|
2023-08-06 01:03:22 |
|
2023-08-04 12:11:27 |
|
2023-08-04 01:03:24 |
|
2023-07-14 12:11:24 |
|
2023-07-14 01:03:21 |
|
2023-03-29 01:13:04 |
|
2023-03-28 12:03:27 |
|
2022-10-11 12:10:09 |
|
2022-10-11 01:03:10 |
|
2021-05-04 12:11:00 |
|
2021-04-22 01:11:32 |
|
2020-10-14 01:05:07 |
|
2020-10-03 01:05:06 |
|
2020-05-29 01:04:39 |
|
2020-05-23 01:41:32 |
|
2020-05-23 00:25:07 |
|
2019-06-25 12:02:54 |
|
2019-01-30 12:03:10 |
|
2018-10-31 00:20:01 |
|
2018-10-11 00:19:46 |
|
2018-07-13 01:03:19 |
|
2017-11-22 12:03:15 |
|
2017-11-21 12:02:27 |
|
2017-09-19 09:23:36 |
|
2017-08-17 09:22:53 |
|
2016-06-28 18:00:04 |
|
2016-04-26 19:31:00 |
|
2014-06-14 13:28:24 |
|
2014-02-17 10:53:21 |
|
2013-05-10 23:16:31 |
|