CVE-2010-0169 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-0169 PUBLISHED

Reported by mitre · Published March 25, 2010

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to the XUL cache, which might allow remote attackers to modify the browser's font and other CSS attributes, and potentially disrupt rendering of a web page, by forcing the browser to perform this erroneous stylesheet caching.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a

Timeline

Mar 25, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score

References

x_refsource_CONFIRM
38918 vdb-entryx_refsource_BID
oval:org.mitre.oval:def:11391 vdb-entrysignaturex_refsource_OVAL
ADV-2010-0692 vdb-entryx_refsource_VUPEN
x_refsource_CONFIRM
oval:org.mitre.oval:def:8431 vdb-entrysignaturex_refsource_OVAL

Open in Interactive Console →