Mozilla Firefox / Seamonkey multiple security vulnerabilities - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Mozilla Firefox / Seamonkey multiple security vulnerabilities
updated since 28.10.2009
Published: 05.11.2009
Source: MOZILLA
SecurityVulns ID: 10356
Type: remote
Level: 8/10
Description: Buffer ovefflows, privilege escalation, information leak, crossite scripting.

Affected: MOZILLA : SeaMonkey 2.0
MOZILLA : Firefox 3.0
MOZILLA : Firefox 3.5
CVE: CVE-2009-3383
CVE-2009-3382
CVE-2009-3381
CVE-2009-3380
CVE-2009-3379
CVE-2009-3378
CVE-2009-3377
CVE-2009-3376
CVE-2009-3375
CVE-2009-3374
CVE-2009-3373
CVE-2009-3372
CVE-2009-3371
CVE-2009-3370
CVE-2009-3274 (Mozilla Firefox 3.6a1, 3.5.2, and earlier 2.x and 3.x versions on Linux uses a predictable /tmp pathname for files selected from the Downloads window, which allows local users to replace an arbitrary downloaded file by placing a file in a /tmp location before the download occurs, possibly related to the Archive Manager component. NOTE: some of these details are obtained from third party information.)
CVE-2009-1563
CVE-2009-0689

Original document disclosure_(at)_contextis.co.uk, Context IS Advisory - Autocomplete Data Theft in Mozilla Firefox (05.11.2009)

IDEFENSE, iDefense Security Advisory 10.28.09: Mozilla Firefox GIF Color Map Parsing Buffer Overflow Vulnerability (29.10.2009)

SECUNIA, Secunia Research: Mozilla Firefox Floating Point Memory Allocation Vulnerability (28.10.2009)

document Jeremy Brown, Mozilla Firefox 3.5.3 Local Download Manager Exploit (28.10.2009)

MOZILLA, Mozilla Foundation Security Advisory 2009-64 (28.10.2009)

MOZILLA, Mozilla Foundation Security Advisory 2009-63 (28.10.2009)

MOZILLA, Mozilla Foundation Security Advisory 2009-62 (28.10.2009)

document MOZILLA, Mozilla Foundation Security Advisory 2009-61 (28.10.2009)

MOZILLA, Mozilla Foundation Security Advisory 2009-59 (28.10.2009)

MOZILLA, You are here: Security Center > Mozilla Foundation Security Advisories > MFSA 2009-57 Mozilla Foundation Security Advisory 2009-57 (28.10.2009)

document MOZILLA, Mozilla Foundation Security Advisory 2009-56 (28.10.2009)

MOZILLA, Mozilla Foundation Security Advisory 2009-55 (28.10.2009)

MOZILLA, Mozilla Foundation Security Advisory 2009-54 (28.10.2009)

MOZILLA, Mozilla Foundation Security Advisory 2009-53 (28.10.2009)

document MOZILLA, Mozilla Foundation Security Advisory 2009-52 (28.10.2009)

Files: Mozilla Firefox 3.5.3 Local Download Manager Exploit
Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod