CVE-2010-0220
Firefox < 3.5.7 - Denial of Service via nsObserverList::FillObserverArray
Title source: llmDescription
The nsObserverList::FillObserverArray function in xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote attackers to cause a denial of service (application crash) via a crafted web site that triggers memory consumption and an accompanying Low Memory alert dialog, and also triggers attempted removal of an observer from an empty observers array.
References (7)
Core 7
Core References
Patch x_refsource_misc
http://isc.sans.org/diary.html?storyid=7897
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:000
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/55550
Exploit x_refsource_confirm
http://hg.mozilla.org/mozilla-central/rev/51396f6c9f20
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8292
Patch x_refsource_confirm
http://www.mozilla.com/en-US/firefox/3.5.7/releasenotes/
Exploit x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=507114
Scores
EPSS
0.0146
EPSS Percentile
70.7%
Details
CWE
CWE-399
Status
published
Products (46)
mozilla/firefox
0.1
mozilla/firefox
0.2
mozilla/firefox
0.3
mozilla/firefox
0.4
mozilla/firefox
0.5
mozilla/firefox
0.6
mozilla/firefox
0.6.1
mozilla/firefox
0.7
mozilla/firefox
0.7.1
mozilla/firefox
0.8
... and 36 more
Published
Jan 07, 2010
Tracked Since
Feb 18, 2026