Vulnerability Database

290,018

Total vulnerabilities in the database

CVE-2010-2117

Mozilla Firefox 3.0.19, 3.5.x, and 3.6.x allows remote attackers to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid (1) news:// or (2) nntp:// URIs.

  • Published: Jun 1, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-2117
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
mozilla / firefox 3.5.3 3.5.3.x
mozilla / firefox 3.5.6 3.5.6.x
mozilla / firefox 3.5 3.5.x
mozilla / firefox 3.5.5 3.5.5.x
mozilla / firefox 3.5.9 3.5.9.x
mozilla / firefox 3.5.4 3.5.4.x
mozilla / firefox 3.5.7 3.5.7.x
mozilla / firefox 3.5.1 3.5.1.x
mozilla / firefox 3.5.2 3.5.2.x
mozilla / firefox 3.0.19 3.0.19.x
mozilla / firefox 3.6 3.6.x