CVE-2010-0164 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-0164 PUBLISHED

Reported by mitre · Published March 25, 2010

Use-after-free vulnerability in the imgContainer::InternalAddFrameHelper function in src/imgContainer.cpp in libpr0n in Mozilla Firefox 3.6 before 3.6.2 allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a multipart/x-mixed-replace animation in which the frames have different bits-per-pixel (bpp) values.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a

Timeline

Mar 25, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
Apr 11, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score

References

38921 vdb-entryx_refsource_BID
38918 vdb-entryx_refsource_BID
x_refsource_MISC
MDVSA-2010:070 vendor-advisoryx_refsource_MANDRIVA
x_refsource_CONFIRM
ADV-2010-0692 vdb-entryx_refsource_VUPEN
oval:org.mitre.oval:def:8703 vdb-entrysignaturex_refsource_OVAL
x_refsource_CONFIRM
20100402 ZDI-10-047: Mozilla Firefox libpr0n imgContainer Bits-Per-Pixel Change Remote Code Execution Vulnerability mailing-listx_refsource_BUGTRAQ

Open in Interactive Console →