Mozilla Firefox nsTreeSelection Dangling Pointer Remote Code Execution Vulnerability

Publish Date: 15 Februar 2011

Schweregrad:: Kritisch

CVE Kennungen:: CVE-2010-2753

Hinweisdatum: 15 Februar 2011

Beschreibung

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a XUL tree element, which triggers a use-after-free.

Trend Micro Lösungen

Trend Micro Deep Security shields networks through Deep Packet Inspection (DPI) rules. Trend Micro customers using OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities. Please refer to the filter number and filter name when applying appropriate DPI and/or IDF rules.

Lösungen

Trend Micro Deep Security DPI Rule Number: 1004303
Trend Micro Deep Security DPI Rule Name: 1004303 - Mozilla Firefox nsTreeSelection Dangling Pointer Remote Code Execution Vulnerability

Betroffene Software und Version:

Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.10
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.9
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.12
Mozilla Seamonkey 1.1.13
Mozilla Seamonkey 1.1.14
Mozilla Seamonkey 1.1.15
Mozilla Seamonkey 1.1.16
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 1.1.18
Mozilla Seamonkey 1.1.19
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey 1.1.4
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.1.9
Mozilla Seamonkey 1.5.0.10
Mozilla Seamonkey 1.5.0.8
Mozilla Seamonkey 1.5.0.9
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.0.1
Mozilla Seamonkey 2.0.2
Mozilla Seamonkey 2.0.3
Mozilla Seamonkey 2.0.4
Mozilla Seamonkey 2.0.5
Mozilla Seamonkey 2.0a1pre
Mozilla Thunderbird 3.0.1
Mozilla Thunderbird 3.0.2
Mozilla Thunderbird 3.0.3
Mozilla Thunderbird 3.0.4
Mozilla Thunderbird 3.0.5
Mozilla Thunderbird 3.1

Mozilla Firefox nsTreeSelection Dangling Pointer Remote Code Execution Vulnerability

Beschreibung

Trend Micro Lösungen

Lösungen

Betroffene Software und Version:

Ressourcen

Support

Über Trend

Hauptniederlassung DACH