Bird_banner_small4
Mozilla Firefox Plugin Parameter Array Dangling Pointer
TSL ID FSC20100726-03
CVE ID(s) CVE-2010-2755
Severity High
Description

A code execution vulnerability has been reported in Mozilla Firefox. The vulnerability is due to an error while handling plugins parameters contained in a malicious tag. A remote attacker can exploit this vulnerability by enticing a target user to visit a specially crafted web page. Exploitation of the vulnerability can result in arbitrary code execution in the context of the application.

In attack scenarios where code execution is successful the behaviour of the target system depends entirely on the logic of the injected code, which would run within the security context of the currently logged in user. In situations where code execution is not successful the affected application may terminate abnormally.

The vendor, Mozilla, has released an advisory regarding this vulnerability:

http://www.mozilla.org/security/announce/2010/mfsa2010-48.html
Affected Products
  • Mozilla Foundation FireFox 3.6.7
CVSS Score Base 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P):
  • Access vector is NETWORK
  • Access complexity is MEDIUM
  • Level of authentication required is NONE
  • Impact of this vulnerability on data confidentiality is PARTIAL
  • Impact of this vulnerability on data integrity is PARTIAL
  • Impact of this vulnerability on data availability is PARTIAL
Temporal 5.0 (E:U/RL:OF/RC:C):
  • The exploitability level of this vulnerability is UNPROVEN
  • The remediation level of this vulnerability is OFFICIAL FIX
  • The report confidence level of this vulnerability is CONFIRMED