cve/CVE-2010-1196.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

839 B

Raw Permalink Blame History

CVE-2010-1196

Description

Integer overflow in the nsGenericDOMDataNode::SetTextInternal function in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a DOM node with a long text value that triggers a heap-based buffer overflow.

POC

Reference

http://www.ubuntu.com/usn/usn-930-2
https://bugzilla.mozilla.org/show_bug.cgi?id=534666

Github

No PoCs found on GitHub currently.

839 B Raw Permalink Blame History

CVE-2010-1196

Description

POC

Reference

Github

839 B

Raw Permalink Blame History