CVE-2010-3765
Published: 27 October 2010
Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x before 2.0.10, when JavaScript is enabled, allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracking, and the creation of multiple frames, which triggers memory corruption, as exploited in the wild in October 2010 by the Belmoo malware.
Notes
| Author | Note |
|---|---|
| jdstrand | 0-day exploit in wild for Windows. Presumed that other platforms will follow soon. It is unclear if compiler and kernel protections will protect against this, and upstream considers this extremely serious. |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
firefox Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
| hardy |
Ignored
(end of life)
|
|
| karmic |
Does not exist
|
|
| lucid |
Released
(3.6.12+build1+nobinonly-0ubuntu0.10.04.1)
|
|
| maverick |
Released
(3.6.12+build1+nobinonly-0ubuntu0.10.10.1)
|
|
| upstream |
Released
(3.6.12)
|
|
|
firefox-3.0 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| hardy |
Released
(3.6.12+build1+nobinonly-0ubuntu0.8.04.1)
|
|
| karmic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| maverick |
Does not exist
|
|
| upstream |
Needs triage
(Ubuntu source uses 3.6.x)
|
|
|
firefox-3.5 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| hardy |
Does not exist
|
|
| karmic |
Released
(3.6.12+build1+nobinonly-0ubuntu0.9.10.1)
|
|
| lucid |
Does not exist
|
|
| maverick |
Does not exist
|
|
| upstream |
Needs triage
(Ubuntu source uses 3.6.x)
|
|
|
seamonkey Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| hardy |
Released
(2.0.10+build1+nobinonly-0ubuntu0.8.04.1)
|
|
| karmic |
Released
(2.0.10+build1+nobinonly-0ubuntu0.9.10.1)
|
|
| lucid |
Released
(2.0.10+build1+nobinonly-0ubuntu0.10.04.1)
|
|
| maverick |
Released
(2.0.10+build1+nobinonly-0ubuntu0.10.10.1)
|
|
| upstream |
Released
(2.0.10)
|
|
|
thunderbird Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| hardy |
Released
(2.0.0.24+build1+nobinonly-0ubuntu0.8.04.2)
|
|
| karmic |
Released
(2.0.0.24+build1+nobinonly-0ubuntu0.9.10.3)
|
|
| lucid |
Released
(3.0.10+build1+nobinonly-0ubuntu0.10.04.1)
|
|
| maverick |
Released
(3.1.6+build1+nobinonly-0ubuntu0.10.10.1)
|
|
| upstream |
Released
(3.0.10, 3.1.6)
|
|
|
xulrunner-1.9.2 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| hardy |
Released
(1.9.2.12+build1+nobinonly-0ubuntu0.8.04.1)
|
|
| karmic |
Released
(1.9.2.12+build1+nobinonly-0ubuntu0.9.10.1)
|
|
| lucid |
Released
(1.9.2.12+build1+nobinonly-0ubuntu0.10.04.1)
|
|
| maverick |
Released
(1.9.2.12+build1+nobinonly-0ubuntu0.10.10.1)
|
|
| upstream |
Released
(1.9.2.12)
|