cvelistv5 - CVE-2009-2477

CVE-2009-2477 (GCVE-0-2009-2477)

Vulnerability from cvelistv5 – Published: 2009-07-15 15:00 – Updated: 2024-08-07 05:52

Summary

js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	https://bugzilla.mozilla.org/show_bug.cgi?id=503286	x_refsource_CONFIRM
	http://www.kb.cert.org/vuls/id/443060	third-party-advisoryx_refsource_CERT-VN
	https://www.redhat.com/archives/fedora-package-an…	vendor-advisoryx_refsource_FEDORA
	https://www.exploit-db.com/exploits/40936/	exploitx_refsource_EXPLOIT-DB
	http://voices.washingtonpost.com/securityfix/2009…	x_refsource_MISC
	http://isc.sans.org/diary.html?storyid=6796	x_refsource_MISC
	http://sunsolve.sun.com/search/document.do?assetk…	vendor-advisoryx_refsource_SUNALERT
	http://www.securityfocus.com/bid/35660	vdb-entryx_refsource_BID
	http://www.exploit-db.com/exploits/9181	exploitx_refsource_EXPLOIT-DB
	http://secunia.com/advisories/35798	third-party-advisoryx_refsource_SECUNIA
	http://blog.mozilla.com/security/2009/07/14/criti…	x_refsource_CONFIRM
	http://www.vupen.com/english/advisories/2009/1868	vdb-entryx_refsource_VUPEN
	http://www.exploit-db.com/exploits/9137	exploitx_refsource_EXPLOIT-DB
	http://www.h-online.com/security/First-Zero-Day-E…	x_refsource_MISC
	http://www.mozilla.org/security/announce/2009/mfs…	x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T05:52:14.977Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
          },
          {
            "name": "VU#443060",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/443060"
          },
          {
            "name": "FEDORA-2009-7898",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
          },
          {
            "name": "40936",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/40936/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://isc.sans.org/diary.html?storyid=6796"
          },
          {
            "name": "266148",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUNALERT",
              "x_transferred"
            ],
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
          },
          {
            "name": "35660",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/35660"
          },
          {
            "name": "9181",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/9181"
          },
          {
            "name": "35798",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35798"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
          },
          {
            "name": "ADV-2009-1868",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2009/1868"
          },
          {
            "name": "9137",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/9137"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-07-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-18T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
        },
        {
          "name": "VU#443060",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/443060"
        },
        {
          "name": "FEDORA-2009-7898",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
        },
        {
          "name": "40936",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/40936/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://isc.sans.org/diary.html?storyid=6796"
        },
        {
          "name": "266148",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUNALERT"
          ],
          "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
        },
        {
          "name": "35660",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/35660"
        },
        {
          "name": "9181",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/9181"
        },
        {
          "name": "35798",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35798"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
        },
        {
          "name": "ADV-2009-1868",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2009/1868"
        },
        {
          "name": "9137",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/9137"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-2477",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
            },
            {
              "name": "VU#443060",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/443060"
            },
            {
              "name": "FEDORA-2009-7898",
              "refsource": "FEDORA",
              "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
            },
            {
              "name": "40936",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/40936/"
            },
            {
              "name": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html",
              "refsource": "MISC",
              "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
            },
            {
              "name": "http://isc.sans.org/diary.html?storyid=6796",
              "refsource": "MISC",
              "url": "http://isc.sans.org/diary.html?storyid=6796"
            },
            {
              "name": "266148",
              "refsource": "SUNALERT",
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
            },
            {
              "name": "35660",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/35660"
            },
            {
              "name": "9181",
              "refsource": "EXPLOIT-DB",
              "url": "http://www.exploit-db.com/exploits/9181"
            },
            {
              "name": "35798",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35798"
            },
            {
              "name": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/",
              "refsource": "CONFIRM",
              "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
            },
            {
              "name": "ADV-2009-1868",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2009/1868"
            },
            {
              "name": "9137",
              "refsource": "EXPLOIT-DB",
              "url": "http://www.exploit-db.com/exploits/9137"
            },
            {
              "name": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761",
              "refsource": "MISC",
              "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
            },
            {
              "name": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html",
              "refsource": "CONFIRM",
              "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2009-2477",
    "datePublished": "2009-07-15T15:00:00",
    "dateReserved": "2009-07-15T00:00:00",
    "dateUpdated": "2024-08-07T05:52:14.977Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mozilla:firefox:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"76CD3BDF-A079-4EF3-ABDE-43CBDD08DB1F\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements.\"}, {\"lang\": \"es\", \"value\": \"El archivo js/src/jstracer.cpp en el compilador JavaScript Just-in-Time (JIT) (tambi\\u00e9n se conoce como TraceMonkey) en Firefox de Mozilla versiones 3.5 anteriores a 3.5.1, permite a los atacantes remotos ejecutar c\\u00f3digo arbitrario por medio de cierto uso de la funci\\u00f3n escape que desencadena el acceso a ubicaciones de memoria no inicializadas, como es demostrado originalmente por un documento que contiene elementos P y FONT.\"}]",
      "id": "CVE-2009-2477",
      "lastModified": "2024-11-21T01:04:58.100",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2009-07-15T15:30:01.453",
      "references": "[{\"url\": \"http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://isc.sans.org/diary.html?storyid=6796\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/35798\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.exploit-db.com/exploits/9137\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.exploit-db.com/exploits/9181\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/443060\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.mozilla.org/security/announce/2009/mfsa2009-41.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/35660\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1868\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=503286\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.exploit-db.com/exploits/40936/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://isc.sans.org/diary.html?storyid=6796\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/35798\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.exploit-db.com/exploits/9137\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.exploit-db.com/exploits/9181\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/443060\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.mozilla.org/security/announce/2009/mfsa2009-41.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/35660\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1868\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=503286\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.exploit-db.com/exploits/40936/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2009-2477\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-07-15T15:30:01.453\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements.\"},{\"lang\":\"es\",\"value\":\"El archivo js/src/jstracer.cpp en el compilador JavaScript Just-in-Time (JIT) (tambi\u00e9n se conoce como TraceMonkey) en Firefox de Mozilla versiones 3.5 anteriores a 3.5.1, permite a los atacantes remotos ejecutar c\u00f3digo arbitrario por medio de cierto uso de la funci\u00f3n escape que desencadena el acceso a ubicaciones de memoria no inicializadas, como es demostrado originalmente por un documento que contiene elementos P y FONT.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76CD3BDF-A079-4EF3-ABDE-43CBDD08DB1F\"}]}]}],\"references\":[{\"url\":\"http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://isc.sans.org/diary.html?storyid=6796\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/35798\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.exploit-db.com/exploits/9137\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.exploit-db.com/exploits/9181\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/443060\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.mozilla.org/security/announce/2009/mfsa2009-41.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/35660\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/1868\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=503286\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.exploit-db.com/exploits/40936/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://isc.sans.org/diary.html?storyid=6796\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35798\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.exploit-db.com/exploits/9137\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.exploit-db.com/exploits/9181\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/443060\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.mozilla.org/security/announce/2009/mfsa2009-41.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/35660\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/1868\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=503286\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.exploit-db.com/exploits/40936/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

FKIE_CVE-2009-2477

Vulnerability from fkie_nvd - Published: 2009-07-15 15:30 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/
cve@mitre.org	http://isc.sans.org/diary.html?storyid=6796
cve@mitre.org	http://secunia.com/advisories/35798	Vendor Advisory
cve@mitre.org	http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1
cve@mitre.org	http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html
cve@mitre.org	http://www.exploit-db.com/exploits/9137
cve@mitre.org	http://www.exploit-db.com/exploits/9181
cve@mitre.org	http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761
cve@mitre.org	http://www.kb.cert.org/vuls/id/443060	US Government Resource
cve@mitre.org	http://www.mozilla.org/security/announce/2009/mfsa2009-41.html	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/35660	Exploit
cve@mitre.org	http://www.vupen.com/english/advisories/2009/1868	Patch, Vendor Advisory
cve@mitre.org	https://bugzilla.mozilla.org/show_bug.cgi?id=503286
cve@mitre.org	https://www.exploit-db.com/exploits/40936/
cve@mitre.org	https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html
af854a3a-2127-422b-91ae-364da2661108	http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/
af854a3a-2127-422b-91ae-364da2661108	http://isc.sans.org/diary.html?storyid=6796
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35798	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1
af854a3a-2127-422b-91ae-364da2661108	http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html
af854a3a-2127-422b-91ae-364da2661108	http://www.exploit-db.com/exploits/9137
af854a3a-2127-422b-91ae-364da2661108	http://www.exploit-db.com/exploits/9181
af854a3a-2127-422b-91ae-364da2661108	http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/443060	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.mozilla.org/security/announce/2009/mfsa2009-41.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/35660	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2009/1868	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.mozilla.org/show_bug.cgi?id=503286
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/40936/
af854a3a-2127-422b-91ae-364da2661108	https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html

Impacted products

	Vendor	Product	Version
	mozilla	firefox	3.5

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mozilla:firefox:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "76CD3BDF-A079-4EF3-ABDE-43CBDD08DB1F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements."
    },
    {
      "lang": "es",
      "value": "El archivo js/src/jstracer.cpp en el compilador JavaScript Just-in-Time (JIT) (tambi\u00e9n se conoce como TraceMonkey) en Firefox de Mozilla versiones 3.5 anteriores a 3.5.1, permite a los atacantes remotos ejecutar c\u00f3digo arbitrario por medio de cierto uso de la funci\u00f3n escape que desencadena el acceso a ubicaciones de memoria no inicializadas, como es demostrado originalmente por un documento que contiene elementos P y FONT."
    }
  ],
  "id": "CVE-2009-2477",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2009-07-15T15:30:01.453",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://isc.sans.org/diary.html?storyid=6796"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/35798"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.exploit-db.com/exploits/9137"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.exploit-db.com/exploits/9181"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/443060"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/35660"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2009/1868"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.exploit-db.com/exploits/40936/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://isc.sans.org/diary.html?storyid=6796"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/35798"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.exploit-db.com/exploits/9137"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.exploit-db.com/exploits/9181"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/443060"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/35660"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2009/1868"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.exploit-db.com/exploits/40936/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTA-2009-AVI-282

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité permettant l'exécution de code arbitraire à distance à été corrigée.

Description

Une vulnérabilité affectant la compilation à la volée (Just In Time Compiler) de code JavaScript a été corrigée. Elle permet à une personne malveillante distante d'exécuter du code arbitraire au moyen d'une page web malveillante spécialement écrite.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Mozilla Firefox 3.5.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Mozilla MFSA 2009-41 du 16 juillet 2009	None	vendor-advisory
Référence NIST du CVE-2009-2477 :	-	other
Bulletin de sécurité de la fondation Mozilla MFSA 2009-41 du 16 juillet 2009 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eMozilla Firefox 3.5.\u003c/p\u003e",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 affectant la compilation \u00e0 la vol\u00e9e (Just In Time\nCompiler) de code JavaScript a \u00e9t\u00e9 corrig\u00e9e. Elle permet \u00e0 une personne\nmalveillante distante d\u0027ex\u00e9cuter du code arbitraire au moyen d\u0027une page\nweb malveillante sp\u00e9cialement \u00e9crite.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-2477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-2477"
    }
  ],
  "links": [
    {
      "title": "R\u00e9f\u00e9rence NIST du CVE-2009-2477 :",
      "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2477"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA 2009-41    du 16 juillet 2009 :",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
    }
  ],
  "reference": "CERTA-2009-AVI-282",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2009-07-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 permettant l\u0027ex\u00e9cution de code arbitraire \u00e0 distance \u00e0\n\u00e9t\u00e9 corrig\u00e9e.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Firefox",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla MFSA 2009-41 du 16 juillet 2009",
      "url": null
    }
  ]
}

CERTA-2009-AVI-282

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité permettant l'exécution de code arbitraire à distance à été corrigée.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Mozilla Firefox 3.5.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Mozilla MFSA 2009-41 du 16 juillet 2009	None	vendor-advisory
Référence NIST du CVE-2009-2477 :	-	other
Bulletin de sécurité de la fondation Mozilla MFSA 2009-41 du 16 juillet 2009 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eMozilla Firefox 3.5.\u003c/p\u003e",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 affectant la compilation \u00e0 la vol\u00e9e (Just In Time\nCompiler) de code JavaScript a \u00e9t\u00e9 corrig\u00e9e. Elle permet \u00e0 une personne\nmalveillante distante d\u0027ex\u00e9cuter du code arbitraire au moyen d\u0027une page\nweb malveillante sp\u00e9cialement \u00e9crite.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-2477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-2477"
    }
  ],
  "links": [
    {
      "title": "R\u00e9f\u00e9rence NIST du CVE-2009-2477 :",
      "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2477"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA 2009-41    du 16 juillet 2009 :",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
    }
  ],
  "reference": "CERTA-2009-AVI-282",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2009-07-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 permettant l\u0027ex\u00e9cution de code arbitraire \u00e0 distance \u00e0\n\u00e9t\u00e9 corrig\u00e9e.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Firefox",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla MFSA 2009-41 du 16 juillet 2009",
      "url": null
    }
  ]
}

GHSA-P5FJ-7PGR-XV7V

Vulnerability from github – Published: 2022-05-02 03:35 – Updated: 2025-04-09 04:12

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2009-2477"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2009-07-15T15:30:00Z",
    "severity": "HIGH"
  },
  "details": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements.",
  "id": "GHSA-p5fj-7pgr-xv7v",
  "modified": "2025-04-09T04:12:00Z",
  "published": "2022-05-02T03:35:38Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2477"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/40936"
    },
    {
      "type": "WEB",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
    },
    {
      "type": "WEB",
      "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35"
    },
    {
      "type": "WEB",
      "url": "http://isc.sans.org/diary.html?storyid=6796"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35798"
    },
    {
      "type": "WEB",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
    },
    {
      "type": "WEB",
      "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
    },
    {
      "type": "WEB",
      "url": "http://www.exploit-db.com/exploits/9137"
    },
    {
      "type": "WEB",
      "url": "http://www.exploit-db.com/exploits/9181"
    },
    {
      "type": "WEB",
      "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/443060"
    },
    {
      "type": "WEB",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/35660"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2009/1868"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2009-ALE-012

Vulnerability from certfr_alerte - Published: - Updated:

Une vulnérabilité affectant le traitement d'une balise HTML permet à une personne malveillante d'exécuter du code arbitraire à distance.

Description

Une vulnérabilité affectant le traitement de la balise \<font> par l'interpréteur JavaScript permet à une personne malveillante d'exécuter du code arbitraire à distance au moyen d'une page web spécialement écrite.

Un code permettant l'exploitation de cette vulnérabilité est disponible sur l'Internet.

Contournement provisoire

Dans l'attente d'un correctif le CERTA recommande d'utiliser un navigateur alternatif ou de naviguer avec le JavaScript désactivé.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Mozilla Firefox 3.5.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Secunia 35798 du 14 juillet 2009	None	vendor-advisory
Référence NIST du CVE-2009-2477 :	-	other
Article de sécurité Mozilla du 14 juillet :	-	other
Bulletin de sécurité de la fondation Mozilla MFSA 2009-41 du 16 juillet 2009 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eMozilla Firefox 3.5.\u003c/p\u003e",
  "closed_at": "2009-07-17",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 affectant le traitement de la balise \\\u003cfont\\\u003e par\nl\u0027interpr\u00e9teur JavaScript permet \u00e0 une personne malveillante d\u0027ex\u00e9cuter\ndu code arbitraire \u00e0 distance au moyen d\u0027une page web sp\u00e9cialement\n\u00e9crite.\n\nUn code permettant l\u0027exploitation de cette vuln\u00e9rabilit\u00e9 est disponible\nsur l\u0027Internet.\n\n## Contournement provisoire\n\nDans l\u0027attente d\u0027un correctif le CERTA recommande d\u0027utiliser un\nnavigateur alternatif ou de naviguer avec le JavaScript d\u00e9sactiv\u00e9.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-2477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-2477"
    }
  ],
  "links": [
    {
      "title": "R\u00e9f\u00e9rence NIST du CVE-2009-2477 :",
      "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2477"
    },
    {
      "title": "Article de s\u00e9curit\u00e9 Mozilla du 14 juillet :",
      "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA 2009-41    du 16 juillet 2009 :",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
    }
  ],
  "reference": "CERTA-2009-ALE-012",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2009-07-15T00:00:00.000000"
    },
    {
      "description": "ajout des liens Mozilla et CVE.",
      "revision_date": "2009-07-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 affectant le traitement d\u0027une balise HTML permet \u00e0 une\npersonne malveillante d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Mozilla Firefox",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Secunia 35798 du 14 juillet 2009",
      "url": "http://secunia.com/advisories/35798"
    }
  ]
}

CERTA-2009-ALE-012

Vulnerability from certfr_alerte - Published: - Updated:

Une vulnérabilité affectant le traitement d'une balise HTML permet à une personne malveillante d'exécuter du code arbitraire à distance.

Description

Un code permettant l'exploitation de cette vulnérabilité est disponible sur l'Internet.

Contournement provisoire

Dans l'attente d'un correctif le CERTA recommande d'utiliser un navigateur alternatif ou de naviguer avec le JavaScript désactivé.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Mozilla Firefox 3.5.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Secunia 35798 du 14 juillet 2009	None	vendor-advisory
Référence NIST du CVE-2009-2477 :	-	other
Article de sécurité Mozilla du 14 juillet :	-	other
Bulletin de sécurité de la fondation Mozilla MFSA 2009-41 du 16 juillet 2009 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eMozilla Firefox 3.5.\u003c/p\u003e",
  "closed_at": "2009-07-17",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 affectant le traitement de la balise \\\u003cfont\\\u003e par\nl\u0027interpr\u00e9teur JavaScript permet \u00e0 une personne malveillante d\u0027ex\u00e9cuter\ndu code arbitraire \u00e0 distance au moyen d\u0027une page web sp\u00e9cialement\n\u00e9crite.\n\nUn code permettant l\u0027exploitation de cette vuln\u00e9rabilit\u00e9 est disponible\nsur l\u0027Internet.\n\n## Contournement provisoire\n\nDans l\u0027attente d\u0027un correctif le CERTA recommande d\u0027utiliser un\nnavigateur alternatif ou de naviguer avec le JavaScript d\u00e9sactiv\u00e9.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-2477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-2477"
    }
  ],
  "links": [
    {
      "title": "R\u00e9f\u00e9rence NIST du CVE-2009-2477 :",
      "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2477"
    },
    {
      "title": "Article de s\u00e9curit\u00e9 Mozilla du 14 juillet :",
      "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA 2009-41    du 16 juillet 2009 :",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
    }
  ],
  "reference": "CERTA-2009-ALE-012",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2009-07-15T00:00:00.000000"
    },
    {
      "description": "ajout des liens Mozilla et CVE.",
      "revision_date": "2009-07-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 affectant le traitement d\u0027une balise HTML permet \u00e0 une\npersonne malveillante d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Mozilla Firefox",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Secunia 35798 du 14 juillet 2009",
      "url": "http://secunia.com/advisories/35798"
    }
  ]
}

GSD-2009-2477

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2009-2477

Aliases

CVE-2009-2477

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2009-2477",
    "description": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements.",
    "id": "GSD-2009-2477"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2009-2477"
      ],
      "details": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements.",
      "id": "GSD-2009-2477",
      "modified": "2023-12-13T01:19:47.194554Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2009-2477",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
          },
          {
            "name": "VU#443060",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/443060"
          },
          {
            "name": "FEDORA-2009-7898",
            "refsource": "FEDORA",
            "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
          },
          {
            "name": "40936",
            "refsource": "EXPLOIT-DB",
            "url": "https://www.exploit-db.com/exploits/40936/"
          },
          {
            "name": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html",
            "refsource": "MISC",
            "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
          },
          {
            "name": "http://isc.sans.org/diary.html?storyid=6796",
            "refsource": "MISC",
            "url": "http://isc.sans.org/diary.html?storyid=6796"
          },
          {
            "name": "266148",
            "refsource": "SUNALERT",
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
          },
          {
            "name": "35660",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/35660"
          },
          {
            "name": "9181",
            "refsource": "EXPLOIT-DB",
            "url": "http://www.exploit-db.com/exploits/9181"
          },
          {
            "name": "35798",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/35798"
          },
          {
            "name": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/",
            "refsource": "CONFIRM",
            "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
          },
          {
            "name": "ADV-2009-1868",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2009/1868"
          },
          {
            "name": "9137",
            "refsource": "EXPLOIT-DB",
            "url": "http://www.exploit-db.com/exploits/9137"
          },
          {
            "name": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761",
            "refsource": "MISC",
            "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
          },
          {
            "name": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html",
            "refsource": "CONFIRM",
            "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-2477"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a document containing P and FONT elements."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-94"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://blog.mozilla.com/security/2009/07/14/critical-javascript-vulnerability-in-firefox-35/"
            },
            {
              "name": "ADV-2009-1868",
              "refsource": "VUPEN",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.vupen.com/english/advisories/2009/1868"
            },
            {
              "name": "http://isc.sans.org/diary.html?storyid=6796",
              "refsource": "MISC",
              "tags": [],
              "url": "http://isc.sans.org/diary.html?storyid=6796"
            },
            {
              "name": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.h-online.com/security/First-Zero-Day-Exploit-for-Firefox-3-5--/news/113761"
            },
            {
              "name": "35798",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/35798"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=503286"
            },
            {
              "name": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://voices.washingtonpost.com/securityfix/2009/07/stopgap_fix_for_critical_firef.html"
            },
            {
              "name": "35660",
              "refsource": "BID",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.securityfocus.com/bid/35660"
            },
            {
              "name": "VU#443060",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/443060"
            },
            {
              "name": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-41.html"
            },
            {
              "name": "FEDORA-2009-7898",
              "refsource": "FEDORA",
              "tags": [],
              "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00909.html"
            },
            {
              "name": "266148",
              "refsource": "SUNALERT",
              "tags": [],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1"
            },
            {
              "name": "40936",
              "refsource": "EXPLOIT-DB",
              "tags": [],
              "url": "https://www.exploit-db.com/exploits/40936/"
            },
            {
              "name": "9181",
              "refsource": "EXPLOIT-DB",
              "tags": [],
              "url": "http://www.exploit-db.com/exploits/9181"
            },
            {
              "name": "9137",
              "refsource": "EXPLOIT-DB",
              "tags": [],
              "url": "http://www.exploit-db.com/exploits/9137"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2017-09-19T01:29Z",
      "publishedDate": "2009-07-15T15:30Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2009-2477 (GCVE-0-2009-2477)

FKIE_CVE-2009-2477

CERTA-2009-AVI-282

Description

Solution

CERTA-2009-AVI-282

Description

Solution

GHSA-P5FJ-7PGR-XV7V

CERTA-2009-ALE-012

Description

Contournement provisoire

Solution

CERTA-2009-ALE-012

Description

Contournement provisoire

Solution

GSD-2009-2477

Tags

Sightings

Nomenclature