JVN/CVE Demo: Cveinfos

CVE

Id: 43782
CVE No.: CVE-2010-1198
Status: Candidate
Description: Use-after-free vulnerability in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, allows remote attackers to execute arbitrary code via vectors involving multiple plugin instances.
Phase: Assigned (20100330)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
476892	43782	CVE-2010-1198	CONFIRM:http://www.mozilla.org/security/announce/2010/mfsa2010-28.html	View
476893	43782	CVE-2010-1198	CONFIRM:https://bugzilla.mozilla.org/show_bug.cgi?id=532246	View
476894	43782	CVE-2010-1198	CONFIRM:http://support.avaya.com/css/P8/documents/100091069	View
476895	43782	CVE-2010-1198	FEDORA:FEDORA-2010-10344	View
476896	43782	CVE-2010-1198	URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043369.html	View
476897	43782	CVE-2010-1198	FEDORA:FEDORA-2010-10361	View
476898	43782	CVE-2010-1198	URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043405.html	View
476899	43782	CVE-2010-1198	MANDRIVA:MDVSA-2010:125	View
476900	43782	CVE-2010-1198	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2010:125	View
476901	43782	CVE-2010-1198	REDHAT:RHSA-2010:0499	View
476902	43782	CVE-2010-1198	URL:http://www.redhat.com/support/errata/RHSA-2010-0499.html	View
476903	43782	CVE-2010-1198	REDHAT:RHSA-2010:0500	View
476904	43782	CVE-2010-1198	URL:http://www.redhat.com/support/errata/RHSA-2010-0500.html	View
476905	43782	CVE-2010-1198	REDHAT:RHSA-2010:0501	View
476906	43782	CVE-2010-1198	URL:http://www.redhat.com/support/errata/RHSA-2010-0501.html	View
476907	43782	CVE-2010-1198	SUSE:SUSE-SA:2010:030	View
476908	43782	CVE-2010-1198	URL:http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html	View
476909	43782	CVE-2010-1198	UBUNTU:USN-930-1	View
476910	43782	CVE-2010-1198	URL:http://ubuntu.com/usn/usn-930-1	View
476911	43782	CVE-2010-1198	UBUNTU:USN-930-2	View
476912	43782	CVE-2010-1198	URL:http://www.ubuntu.com/usn/usn-930-2	View
476913	43782	CVE-2010-1198	BID:41050	View
476914	43782	CVE-2010-1198	URL:http://www.securityfocus.com/bid/41050	View
476915	43782	CVE-2010-1198	BID:41102	View
476916	43782	CVE-2010-1198	URL:http://www.securityfocus.com/bid/41102	View
476917	43782	CVE-2010-1198	OVAL:oval:org.mitre.oval:def:10990	View
476918	43782	CVE-2010-1198	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10990	View
476919	43782	CVE-2010-1198	OVAL:oval:org.mitre.oval:def:14176	View
476920	43782	CVE-2010-1198	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14176	View
476921	43782	CVE-2010-1198	SECTRACK:1024138	View
476922	43782	CVE-2010-1198	URL:http://www.securitytracker.com/id?1024138	View
476923	43782	CVE-2010-1198	SECUNIA:40326	View
476924	43782	CVE-2010-1198	URL:http://secunia.com/advisories/40326	View
476925	43782	CVE-2010-1198	SECUNIA:40401	View
476926	43782	CVE-2010-1198	URL:http://secunia.com/advisories/40401	View
476927	43782	CVE-2010-1198	SECUNIA:40481	View
476928	43782	CVE-2010-1198	URL:http://secunia.com/advisories/40481	View
476929	43782	CVE-2010-1198	VUPEN:ADV-2010-1551	View
476930	43782	CVE-2010-1198	URL:http://www.vupen.com/english/advisories/2010/1551	View
476931	43782	CVE-2010-1198	VUPEN:ADV-2010-1556	View
476932	43782	CVE-2010-1198	URL:http://www.vupen.com/english/advisories/2010/1556	View
476933	43782	CVE-2010-1198	VUPEN:ADV-2010-1557	View
476934	43782	CVE-2010-1198	URL:http://www.vupen.com/english/advisories/2010/1557	View
476935	43782	CVE-2010-1198	VUPEN:ADV-2010-1640	View
476936	43782	CVE-2010-1198	URL:http://www.vupen.com/english/advisories/2010/1640	View
476937	43782	CVE-2010-1198	VUPEN:ADV-2010-1773	View
476938	43782	CVE-2010-1198	URL:http://www.vupen.com/english/advisories/2010/1773	View
476939	43782	CVE-2010-1198	VUPEN:ADV-2010-1592	View
476940	43782	CVE-2010-1198	URL:http://www.vupen.com/english/advisories/2010/1592	View
476941	43782	CVE-2010-1198	XF:firefox-plugin-instances-code-exec(59664)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
35908	JVNDB-2010-001688	複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性	複数の Mozilla 製品の JavaScript エンジンには、サービス運用妨害 (DoS) 状態となる、または任意のコードを実行される脆弱性が存在します。	CVE-2010-1202	43782	9.3		http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001688.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.31 MB
View render complete	2.80 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.80
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	383.66
Event: Controller.beforeRender	4.50
» Processing toolbar data	4.42
Rendering View	15.74
» Event: View.beforeRender	0.03
» Rendering APP/View/Cveinfos/view.ctp	14.82
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.49
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.08
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/43782
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/43782
Remote Port	12314
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.25
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.2.209.67
Http Via	1.1 squid-proxy-5b5d847c96-fzrpz (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.25
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.25
Unique Id	aH4hY5VNbsP8ZfJGBsTs-QAAAL8
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.25
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.25
Redirect Unique Id	aH4hY5VNbsP8ZfJGBsTs-QAAAL8
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.25
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.25
Redirect Redirect Unique Id	aH4hY5VNbsP8ZfJGBsTs-QAAAL8
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1753096547.6251
Request Time	1753096547

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files