Your submission was sent successfully! Close

CVE-2009-3382

Published: 29 October 2009

layout/base/nsCSSFrameConstructor.cpp in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 does not properly handle first-letter frames, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.

Priority

Unknown

Status

Package Release Status
firefox-3.0
Launchpad, Ubuntu, Debian
Upstream
Released (3.0.15)
xulrunner-1.9
Launchpad, Ubuntu, Debian
Upstream
Released (1.9.0.15)