← Back

CVE-2010-1990

nvd nist
Published: May 20, 2010Modified: Apr 29, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Mozilla Firefox 3.6.x, 3.5.x, 3.0.19, and earlier, and SeaMonkey, executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service (excessive application launches) via an HTML document with many IFRAME elements.

Affected (30)

Mozilla
2 products
Firefox
Seamonkey
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Firefox
Version 3.6.1
Firefox
Version 3.6.2
Firefox
Version 3.6.3
Configuration B
7 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Firefox
Version 3.5.1
Firefox
Version 3.5.2
Firefox
Version 3.5.3
Firefox
Version 3.5.4
Firefox
Version 3.5.5
Firefox
Version 3.5.6
Firefox
Version 3.5.7
Configuration C
19 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Firefox
Up to 3.0.19
Firefox
Version 3.0.10
Firefox
Version 3.0.11
Firefox
Version 3.0.12
Firefox
Version 3.0.13
Firefox
Version 3.0.14
Firefox
Version 3.0.15
Firefox
Version 3.0.16
Firefox
Version 3.0.17
Firefox
Version 3.0.1
Firefox
Version 3.0.2
Firefox
Version 3.0.3
Firefox
Version 3.0.4
Firefox
Version 3.0.5
Firefox
Version 3.0.6
Firefox
Version 3.0.7
Firefox
Version 3.0.8
Firefox
Version 3.0.9
Firefox
Version 3.0
Configuration D
1 vulnerable
Vulnerable SoftwareAffected Versions
Seamonkey
All versions

Related CWEs

CWE-399
CWE-399

References (6)

Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.