CVE-2009-3382

Firefox 3.0.x - Remote Code Execution via First-Letter Frame Handling

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3382. PoCs published by Carsten Book.

AI-analyzed exploit summary This exploit leverages a memory corruption vulnerability in Mozilla Firefox by manipulating CSS and DOM properties to trigger arbitrary code execution or a denial-of-service condition.

Description

layout/base/nsCSSFrameConstructor.cpp in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 does not properly handle first-letter frames, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Carsten Book · htmldoslinux

https://www.exploit-db.com/exploits/33314

View Code ZIP pw:eip

This exploit leverages a memory corruption vulnerability in Mozilla Firefox by manipulating CSS and DOM properties to trigger arbitrary code execution or a denial-of-service condition.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Mozilla Firefox (versions affected by CVE-2009-3382)

No auth needed

Prerequisites: Victim must visit a malicious webpage

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5581

Vendor Advisory vendor-advisory x_refsource_sunalert

http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11219

Issue Tracking x_refsource_confirm

https://bugzilla.mozilla.org/show_bug.cgi?id=514960

Patch, Vendor Advisory x_refsource_confirm

http://www.mozilla.org/security/announce/2009/mfsa2009-64.html

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/3334

Scores

EPSS 0.1084

EPSS Percentile 95.3%

Details

Status published

Products (14)

mozilla/firefox 3.0.1

mozilla/firefox 3.0.2

mozilla/firefox 3.0.3

mozilla/firefox 3.0.4

mozilla/firefox 3.0.5

mozilla/firefox 3.0.6

mozilla/firefox 3.0.7

mozilla/firefox 3.0.8

mozilla/firefox 3.0.9

mozilla/firefox 3.0.10

... and 4 more

Published Oct 29, 2009

Tracked Since Feb 18, 2026