Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2010-3765

Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x before 2.0.10, when JavaScript is enabled, allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracking, and the creation of multiple frames, which triggers memory corruption, as exploited in the wild in October 2010 by the Belmoo malware.

  • Published: Oct 28, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-3765
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 9.3
  • AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
mozilla / firefox 3.5.3 3.5.3.x
mozilla / firefox 3.5.6 3.5.6.x
mozilla / firefox 3.5 3.5.x
mozilla / firefox 3.5.5 3.5.5.x
mozilla / firefox 3.5.9 3.5.9.x
mozilla / firefox 3.5.4 3.5.4.x
mozilla / firefox 3.5.7 3.5.7.x
mozilla / firefox 3.5.11 3.5.11.x
mozilla / firefox 3.5.14 3.5.14.x
mozilla / firefox 3.5.10 3.5.10.x
mozilla / firefox 3.5.1 3.5.1.x
mozilla / firefox 3.5.2 3.5.2.x
mozilla / firefox 3.5.12 3.5.12.x
mozilla / firefox 3.5.13 3.5.13.x
mozilla / firefox 3.5.8 3.5.8.x
mozilla / firefox 3.6.2 3.6.2.x
mozilla / firefox 3.6.3 3.6.3.x
mozilla / firefox 3.6.11 3.6.11.x
mozilla / firefox 3.6.8 3.6.8.x
mozilla / firefox 3.6.9 3.6.9.x
mozilla / firefox 3.6.6 3.6.6.x
mozilla / firefox 3.6.10 3.6.10.x
mozilla / firefox 3.6.7 3.6.7.x
mozilla / firefox 3.6.4 3.6.4.x
mozilla / firefox 3.6 3.6.x
mozilla / thunderbird 3.0.8 3.0.8.x
mozilla / thunderbird 3.0.5 3.0.5.x
mozilla / thunderbird 3.0.9 3.0.9.x
mozilla / thunderbird 3.0.1 3.0.1.x
mozilla / thunderbird 3.1.2 3.1.2.x
mozilla / thunderbird 3.1.1 3.1.1.x
mozilla / thunderbird 3.1.4 3.1.4.x
mozilla / thunderbird 3.0.7 3.0.7.x
mozilla / thunderbird 3.0.6 3.0.6.x
mozilla / thunderbird 3.0.3 3.0.3.x
mozilla / thunderbird 3.1.5 3.1.5.x
mozilla / thunderbird 3.0.4 3.0.4.x
mozilla / thunderbird 3.1.3 3.1.3.x
mozilla / thunderbird 3.0.2 3.0.2.x
mozilla / seamonkey 2.0.4 2.0.4.x
mozilla / seamonkey 2.0.3 2.0.3.x
mozilla / seamonkey 2.0.2 2.0.2.x
mozilla / seamonkey 2.0-alpha_2 2.0-alpha_2.x
mozilla / seamonkey 2.0.8 2.0.8.x
mozilla / seamonkey 2.0-rc2 2.0-rc2.x
mozilla / seamonkey 2.0-alpha_3 2.0-alpha_3.x
mozilla / seamonkey 2.0-beta_2 2.0-beta_2.x
mozilla / seamonkey 2.0-alpha_1 2.0-alpha_1.x
mozilla / seamonkey 2.0.9 2.0.9.x
mozilla / seamonkey 2.0.1 2.0.1.x
mozilla / seamonkey 2.0.7 2.0.7.x
mozilla / seamonkey 2.0-beta_1 2.0-beta_1.x
mozilla / seamonkey 2.0.5 2.0.5.x
mozilla / seamonkey 2.0-rc1 2.0-rc1.x
mozilla / seamonkey 2.0.6 2.0.6.x
mozilla / seamonkey 2.0 2.0.x