← Back

CVE-2010-2752

nvd nist
Published: Jul 30, 2010Modified: Apr 29, 2026

JSON object

Loading...
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD

Description

Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code by placing many Cascading Style Sheets (CSS) values in an array, related to references to external font resources and an inconsistency between 16-bit and 32-bit integers.

Affected (72)

Mozilla
3 products
Firefox
Thunderbird
Seamonkey
Configuration A
14 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Firefox
Version 3.5.10
Firefox
Version 3.5.1
Firefox
Version 3.5.2
Firefox
Version 3.5.3
Firefox
Version 3.5.4
Firefox
Version 3.5.5
Firefox
Version 3.5.6
Firefox
Version 3.5.7
Firefox
Version 3.5.9
Firefox
Version 3.6.1
Firefox
Version 3.6.2
Firefox
Version 3.6.3
Firefox
Version 3.6.4
Firefox
Version 3.6.6
Configuration B
7 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Thunderbird
Version 3.0.1
Thunderbird
Version 3.0.2
Thunderbird
Version 3.0.3
Thunderbird
Version 3.0.4
Thunderbird
Version 3.0.5
Thunderbird
Version 3.0
Thunderbird
Version 3.1
Configuration C
51 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Seamonkey
Up to 2.0.5
Seamonkey
Version 1.0.1
Seamonkey
Version 1.0.2
Seamonkey
Version 1.0.3
Seamonkey
Version 1.0.4
Seamonkey
Version 1.0.5
Seamonkey
Version 1.0.6
Seamonkey
Version 1.0.7
Seamonkey
Version 1.0.8
Seamonkey
Version 1.0.9
Seamonkey
Version 1.0
Seamonkey
Version 1.0 alpha
Seamonkey
Version 1.0 beta
Seamonkey
Version 1.1.10
Seamonkey
Version 1.1.11
Seamonkey
Version 1.1.12
Seamonkey
Version 1.1.13
Seamonkey
Version 1.1.14
Seamonkey
Version 1.1.15
Seamonkey
Version 1.1.16
Seamonkey
Version 1.1.17
Seamonkey
Version 1.1.18
Seamonkey
Version 1.1.19
Seamonkey
Version 1.1.1
Seamonkey
Version 1.1.2
Seamonkey
Version 1.1.3
Seamonkey
Version 1.1.4
Seamonkey
Version 1.1.5
Seamonkey
Version 1.1.6
Seamonkey
Version 1.1.7
Seamonkey
Version 1.1.8
Seamonkey
Version 1.1.9
Seamonkey
Version 1.1
Seamonkey
Version 1.1 alpha
Seamonkey
Version 1.1 beta
Seamonkey
Version 1.5.0.10
Seamonkey
Version 1.5.0.8
Seamonkey
Version 1.5.0.9
Seamonkey
Version 2.0.1
Seamonkey
Version 2.0.2
Seamonkey
Version 2.0.3
Seamonkey
Version 2.0.4
Seamonkey
Version 2.0
Seamonkey
Version 2.0 alpha_1
Seamonkey
Version 2.0 alpha_2
Seamonkey
Version 2.0 alpha_3
Seamonkey
Version 2.0 beta_1
Seamonkey
Version 2.0 beta_2
Seamonkey
Version 2.0 rc1
Seamonkey
Version 2.0 rc2
Seamonkey
Version 2.0a1pre

Related CWEs

CWE-189
CWE-189

References (12)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.