← Back

CVE-2009-2044

nvd nist
Published: Jun 12, 2009Modified: Apr 23, 2026

JSON object

Loading...
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:N/A:P
Exploitability: 8.6 / Impact: 2.9
Source: NVD

Description

Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to cause a denial of service (application crash) via a URI for a large GIF image in the BACKGROUND attribute of a BODY element.

Affected (1)

Products: Mozilla: Firefox
Mozilla
1 product
Firefox
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Firefox
Up to 3.0.10
Running on/withPlatform Versions
Linux
Linux Kernel
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (10)

Source: cve@mitre.org
Exploit
Source: cve@mitre.org
ExploitThird Party AdvisoryVDB Entry
Source: cve@mitre.org
PatchThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Issue Tracking
Source: cve@mitre.org
VDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Issue Tracking
Source: af854a3a-2127-422b-91ae-364da2661108
VDB Entry

Timeline

No history available yet.