Release DateDec 15, 2009 |
Severitycritical |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a memory corruption vulnerability in Mozilla Firefox Browser.The vulnerability is caused by a boundary error when the vulnerable software handles a very long floating point number. It allows a remote attacker to execute arbitrary code. |
Affected ProductsMozilla Firefox 3.5.3 and previous versions |
Recommended ActionsUpdate to the latest versions:http://www.firefox.com/ |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2009-1563 |
Reference/shttp://www.mozilla.org/security/announce/2009/mfsa2009-59.htmlhttp://www.securityfocus.com/bid/36851 (BugTraq) |
