CVE-2010-3179

Mozilla Firefox <3.5.14 & <3.6.11 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3179. PoCs published by Alexander Miller.

AI-analyzed exploit summary This exploit leverages a memory corruption vulnerability in Mozilla Firefox, Thunderbird, and SeaMonkey by writing a large buffer of controlled data to trigger arbitrary code execution. The PoC uses JavaScript to generate a malformed string that overflows memory, potentially allowing an attacker to overwrite EIP.

Description

Stack-based buffer overflow in the text-rendering functionality in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a long argument to the document.write method.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Alexander Miller · htmlremotelinux
https://www.exploit-db.com/exploits/34881

This exploit leverages a memory corruption vulnerability in Mozilla Firefox, Thunderbird, and SeaMonkey by writing a large buffer of controlled data to trigger arbitrary code execution. The PoC uses JavaScript to generate a malformed string that overflows memory, potentially allowing an attacker to overwrite EIP.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Racy
Target: Mozilla Firefox < 3.6.11, Firefox < 3.5.14, Thunderbird < 3.1.5, Thunderbird < 3.0.9, SeaMonkey < 2.0.9
No auth needed
Prerequisites: Victim must visit a malicious webpage or open a malicious HTML file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (17)

Core 17
Core References
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-998-1
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-997-1
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:210
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:211
Vendor Advisory x_refsource_confirm
http://support.avaya.com/css/P8/documents/100120156
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=583077
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0782.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0896.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11675
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42867
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0061
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2010/dsa-2124
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050077.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0861.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050154.html

Scores

EPSS 0.1012
EPSS Percentile 95.0%

Details

CWE
CWE-119
Status published
Products (47)
mozilla/firefox 3.6
mozilla/firefox 3.6.2
mozilla/firefox 3.6.3
mozilla/firefox 3.6.4
mozilla/firefox 3.6.6
mozilla/firefox 3.6.7
mozilla/firefox 3.6.8
mozilla/firefox 3.6.9
mozilla/firefox 3.6.10
mozilla/firefox 1.0 (2 CPE variants)
... and 37 more
Published Oct 21, 2010
Tracked Since Feb 18, 2026