The TraceRecorder::traverseScopeChain function in js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6 before 3.6.2 allows remote attackers to cause a denial of service (memory corruption and application crash) and possibly execute arbitrary code via vectors involving certain indirect calls to the JavaScript eval function.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2010-03-25T20:31:00
Updated: 2017-09-18T12:57:01
Reserved: 2010-01-06T00:00:00
Link: CVE-2010-0165
JSON object: View
NVD Information
Status : Modified
Published: 2010-03-25T21:00:00.360
Modified: 2017-09-19T01:30:15.080
Link: CVE-2010-0165
JSON object: View
Redhat Information
No data.
CWE