CVE-2009-3982

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
mozillafirefox
3.5.1
mozillafirefox
3.5.2
mozillafirefox
3.5.3
mozillafirefox
3.5.4
mozillafirefox
3.5.5
mozillaseamonkey
𝑥
≤ 2.0
mozillaseamonkey
1.0
mozillaseamonkey
1.0:alpha
mozillaseamonkey
1.0:beta
mozillaseamonkey
1.0.1
mozillaseamonkey
1.0.2
mozillaseamonkey
1.0.3
mozillaseamonkey
1.0.4
mozillaseamonkey
1.0.5
mozillaseamonkey
1.0.6
mozillaseamonkey
1.0.7
mozillaseamonkey
1.0.8
mozillaseamonkey
1.0.9
mozillaseamonkey
1.0.99
mozillaseamonkey
1.1
mozillaseamonkey
1.1:alpha
mozillaseamonkey
1.1:beta
mozillaseamonkey
1.1.1
mozillaseamonkey
1.1.2
mozillaseamonkey
1.1.3
mozillaseamonkey
1.1.4
mozillaseamonkey
1.1.5
mozillaseamonkey
1.1.6
mozillaseamonkey
1.1.7
mozillaseamonkey
1.1.8
mozillaseamonkey
1.1.9
mozillaseamonkey
1.1.10
mozillaseamonkey
1.1.11
mozillaseamonkey
1.1.12
mozillaseamonkey
1.1.13
mozillaseamonkey
1.1.14
mozillaseamonkey
1.1.15
mozillaseamonkey
1.1.16
mozillaseamonkey
1.1.17
mozillaseamonkey
1.5.0.8
mozillaseamonkey
1.5.0.9
mozillaseamonkey
1.5.0.10
mozillaseamonkey
2.0
mozillaseamonkey
2.0:alpha_1
mozillaseamonkey
2.0:alpha_2
mozillaseamonkey
2.0:alpha_3
mozillaseamonkey
2.0:beta_1
mozillaseamonkey
2.0:beta_2
mozillaseamonkey
2.0:rc1
mozillaseamonkey
2.0a1:a1
mozillaseamonkey
2.0a1pre:a1pre
mozillathunderbird
*
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
seamonkey
lucid
Fixed 2.0.8+build1+nobinonly-0ubuntu0.10.04.1
released
karmic
Fixed 2.0.8+build1+nobinonly-0ubuntu0.9.10.1
released
jaunty
Fixed 2.0.8+build1+nobinonly-0ubuntu0.9.04.1
released
intrepid
ignored
hardy
Fixed 2.0.8+build1+nobinonly-0ubuntu0.8.04.1
released
dapper
dne
xulrunner-1.9.1
lucid
dne
karmic
Fixed 1.9.1.6+nobinonly-0ubuntu0.9.10.1
released
jaunty
Fixed 1.9.1.6+nobinonly-0ubuntu0.9.04.1
released
intrepid
dne
hardy
dne
dapper
dne
References
http://secunia.com/advisories/37699
http://secunia.com/advisories/37783
http://secunia.com/advisories/37785
http://secunia.com/advisories/37856
http://secunia.com/advisories/37881
http://securitytracker.com/id?1023333
http://securitytracker.com/id?1023334
http://www.mozilla.org/security/announce/2009/mfsa2009-65.html
http://www.novell.com/linux/security/advisories/2009_63_firefox.html
http://www.securityfocus.com/bid/37349
http://www.securityfocus.com/bid/37364
http://www.ubuntu.com/usn/USN-874-1
http://www.vupen.com/english/advisories/2009/3547
http://www.vupen.com/english/advisories/2009/3558
https://bugzilla.mozilla.org/show_bug.cgi?id=510518
https://bugzilla.mozilla.org/show_bug.cgi?id=513981
https://bugzilla.mozilla.org/show_bug.cgi?id=514999
https://bugzilla.mozilla.org/show_bug.cgi?id=524121
https://exchange.xforce.ibmcloud.com/vulnerabilities/54802
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8434
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00995.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01034.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01041.html
http://secunia.com/advisories/37699
http://secunia.com/advisories/37783
http://secunia.com/advisories/37785
http://secunia.com/advisories/37856
http://secunia.com/advisories/37881
http://securitytracker.com/id?1023333
http://securitytracker.com/id?1023334
http://www.mozilla.org/security/announce/2009/mfsa2009-65.html
http://www.novell.com/linux/security/advisories/2009_63_firefox.html
http://www.securityfocus.com/bid/37349
http://www.securityfocus.com/bid/37364
http://www.ubuntu.com/usn/USN-874-1
http://www.vupen.com/english/advisories/2009/3547
http://www.vupen.com/english/advisories/2009/3558
https://bugzilla.mozilla.org/show_bug.cgi?id=510518
https://bugzilla.mozilla.org/show_bug.cgi?id=513981
https://bugzilla.mozilla.org/show_bug.cgi?id=514999
https://bugzilla.mozilla.org/show_bug.cgi?id=524121
https://exchange.xforce.ibmcloud.com/vulnerabilities/54802
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8434
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00995.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01034.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01041.html