CVE-2009-3076

Mozilla Firefox <3.0.14 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3076. PoCs published by Dan Kaminsky.

AI-analyzed exploit summary This exploit leverages the `window.pkcs11.addmodule` function in Firefox to load a malicious DLL via a UNC path, triggering a modal dialog that forces user interaction. The provided DLL executes arbitrary code (e.g., launching calc.exe) upon loading.

Description

Mozilla Firefox before 3.0.14 does not properly implement certain dialogs associated with the (1) pkcs11.addmodule and (2) pkcs11.deletemodule operations, which makes it easier for remote attackers to trick a user into installing or removing an arbitrary PKCS11 module.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Dan Kaminsky · textremotemultiple
https://www.exploit-db.com/exploits/9651

This exploit leverages the `window.pkcs11.addmodule` function in Firefox to load a malicious DLL via a UNC path, triggering a modal dialog that forces user interaction. The provided DLL executes arbitrary code (e.g., launching calc.exe) upon loading.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Mozilla Firefox up to 3.0.13
No auth needed
Prerequisites: User interaction to click 'OK' in the modal dialog
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (20)

Core 20
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1022877
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9306
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2009/dsa-1885
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0153.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/36343
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2009_48_firefox.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-1430.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6140
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0650
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36692
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36670
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36671
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36669
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0154.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-1432.html
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=326628
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=509413
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37098
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-1431.html

Scores

EPSS 0.0672
EPSS Percentile 93.1%

Details

Status published
Products (46)
mozilla/firefox 0.1
mozilla/firefox 0.2
mozilla/firefox 0.3
mozilla/firefox 0.4
mozilla/firefox 0.5
mozilla/firefox 0.6
mozilla/firefox 0.6.1
mozilla/firefox 0.7
mozilla/firefox 0.7.1
mozilla/firefox 0.8
... and 36 more
Published Sep 10, 2009
Tracked Since Feb 18, 2026