CVE-2009-2044

Mozilla Firefox <3.0.10 - DoS

Title source: llm

Description

Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to cause a denial of service (application crash) via a URI for a large GIF image in the BACKGROUND attribute of a BODY element.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ahmad Muammar · htmldoslinux

https://www.exploit-db.com/exploits/33031

View Code ZIP pw:eip

References (5)

[Exploit] http://e-rdc.org/v1/news.php?readmore=137

[Exploit, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/504214

[Patch, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/35280

[Issue Tracking] https://bugzilla.mozilla.org/show_bug.cgi?id=496265

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/51037

Scores

EPSS 0.0595

EPSS Percentile 90.7%

Details

CWE

CWE-20

Status published

Products (1)

mozilla/firefox < 3.0.10

Published Jun 12, 2009

Tracked Since Feb 18, 2026