CVE-2009-1044— Mozilla Firefox _moveToEdgeShift方式远程代码执行漏洞

I. CVE-2009-1044の基本情報

影響を受ける製品

II. CVE-2009-1044の公開POC

III. CVE-2009-1044のインテリジェンス情報

• http://dvlabs.tippingpoint.com/blog/2009/03/18/pwn2own-2009-day-1---safari-internet-explorer-and-firefox-taken-down-by-four-zero-day-exploitsx_refsource_MISC
• http://www.mozilla.org/security/announce/2009/mfsa2009-13.htmlx_refsource_CONFIRM
• http://blogs.zdnet.com/security/?p=2934x_refsource_MISC
• http://www.zerodayinitiative.com/advisories/ZDI-09-015x_refsource_MISC
• http://support.avaya.com/elmodocs2/security/ASA-2009-113.htmx_refsource_CONFIRM
• http://dvlabs.tippingpoint.com/blog/2009/02/25/pwn2own-2009x_refsource_MISC
• http://blogs.zdnet.com/security/?p=2941x_refsource_MISC
• http://twitter.com/tippingpoint1/status/1351635812x_refsource_MISC
• https://bugzilla.mozilla.org/show_bug.cgi?id=484320x_refsource_CONFIRM
• http://cansecwest.com/index.htmlx_refsource_MISC
• http://www.h-online.com/security/Pwn2Own-2009-Safari-IE-8-and-Firefox-exploited--/news/112889x_refsource_MISC
• http://news.cnet.com/8301-1009_3-10199652-83.htmlx_refsource_MISC
• http://secunia.com/advisories/34471third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/34521third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/34527third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/34550third-party-advisoryx_refsource_SECUNIA
• http://osvdb.org/52896vdb-entryx_refsource_OSVDB
• http://secunia.com/advisories/34510third-party-advisoryx_refsource_SECUNIA
• http://www.securityfocus.com/bid/34181vdb-entryx_refsource_BID
• http://secunia.com/advisories/34505third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/34792third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/34549third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/34511third-party-advisoryx_refsource_SECUNIA
• http://www.securitytracker.com/id?1021878vdb-entryx_refsource_SECTRACK
• http://www.debian.org/security/2009/dsa-1756vendor-advisoryx_refsource_DEBIAN
• http://www.ubuntu.com/usn/usn-745-1vendor-advisoryx_refsource_UBUNTU
• http://www.vupen.com/english/advisories/2009/0864vdb-entryx_refsource_VUPEN
• http://www.redhat.com/support/errata/RHSA-2009-0398.htmlvendor-advisoryx_refsource_REDHAT
• http://www.redhat.com/support/errata/RHSA-2009-0397.htmlvendor-advisoryx_refsource_REDHAT
• http://www.mandriva.com/security/advisories?name=MDVSA-2009:084vendor-advisoryx_refsource_MANDRIVA
• https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01040.htmlvendor-advisoryx_refsource_FEDORA
• https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01077.htmlvendor-advisoryx_refsource_FEDORA
• http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00008.htmlvendor-advisoryx_refsource_SUSE
• https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01023.htmlvendor-advisoryx_refsource_FEDORA
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11368vdb-entrysignaturex_refsource_OVAL
• http://www.securityfocus.com/archive/1/502303/100/0/threadedmailing-listx_refsource_BUGTRAQ
• https://nvd.nist.gov/vuln/detail/CVE-2009-1044

Same Patch Batch · n/a · 2009-03-23 · 19 CVEs total

IV. 関連脆弱性

V. CVE-2009-1044へのコメント