CVE-2010-3765

Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x before...

Basic Information

CVE State
PUBLISHED
Reserved Date
October 05, 2010
Published Date
October 27, 2010
Last Updated
August 07, 2024
Vendor
Mozilla
Product
Firefox, Thunderbird, SeaMonkey
Description
Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x before 2.0.10, when JavaScript is enabled, allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracking, and the creation of multiple frames, which triggers memory corruption, as exploited in the wild in October 2010 by the Belmoo malware.
Tags
metasploit_scanner

CVSS Scores

CVSS v2.0

9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploit Status

Exploited in the Wild
Yes (2010-10-27 22:00:00 UTC) Source

References

http://www.securityfocus.com/bid/44425 https://rhn.redhat.com/errata/RHSA-2010-0812.html https://bugzilla.mozilla.org/show_bug.cgi?id=607222#c53 http://www.vupen.com/english/advisories/2010/2837 https://bugzilla.redhat.com/show_bug.cgi?id=646997 http://support.avaya.com/css/P8/documents/100114335 http://secunia.com/advisories/41965 http://secunia.com/advisories/41975 http://www.redhat.com/support/errata/RHSA-2010-0896.html http://www.redhat.com/support/errata/RHSA-2010-0808.html http://www.exploit-db.com/exploits/15341 http://www.securitytracker.com/id?1024651 http://secunia.com/advisories/41761 https://bugzilla.mozilla.org/show_bug.cgi?id=607222 http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050233.html http://norman.com/about_norman/press_center/news_archive/2010/129223/en?utm_source=twitterfeed&utm_medium=twitter http://secunia.com/advisories/41969 http://www.ubuntu.com/usn/USN-1011-3 http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefox http://www.norman.com/about_norman/press_center/news_archive/2010/129223/ http://www.ubuntu.com/usn/usn-1011-1 http://www.securitytracker.com/id?1024650 http://www.ubuntu.com/usn/USN-1011-2 http://www.redhat.com/support/errata/RHSA-2010-0809.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:219 http://secunia.com/advisories/42867 http://blog.mozilla.com/security/2010/10/26/critical-vulnerability-in-firefox-3-5-and-firefox-3-6/ http://www.vupen.com/english/advisories/2010/2857 http://www.vupen.com/english/advisories/2011/0061 http://support.avaya.com/css/P8/documents/100114329 http://www.debian.org/security/2010/dsa-2124 http://www.securitytracker.com/id?1024645 http://secunia.com/advisories/42043 http://www.norman.com/security_center/virus_description_archive/129146/ http://secunia.com/advisories/41966 http://www.mandriva.com/security/advisories?name=MDVSA-2010:213 http://secunia.com/advisories/42008 http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050061.html http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.556706 http://www.vupen.com/english/advisories/2010/2871 http://isc.sans.edu/diary.html?storyid=9817 http://www.redhat.com/support/errata/RHSA-2010-0810.html http://www.mozilla.org/security/announce/2010/mfsa2010-73.html http://www.exploit-db.com/exploits/15352 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12108 http://secunia.com/advisories/42003 http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050077.html http://www.redhat.com/support/errata/RHSA-2010-0861.html http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050154.html http://www.exploit-db.com/exploits/15342 http://www.vupen.com/english/advisories/2010/2864

Known Exploited Vulnerability Information

Source Added Date
CVE 2010-10-27 22:00:00 UTC

Scanner Integrations

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

mozilla_interleaved_write

Type: metasploit • Created: Unknown

Metasploit module for CVE-2010-3765

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel

  • Detected by Metasploit