CVE-2009-1571

EPSS 7.11% · P92 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1571

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Use-after-free vulnerability in the HTML parser in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to execute arbitrary code via unspecified method calls that attempt to access freed objects in low-memory situations.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Mozilla Firefox HTML解析器释放后使用漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Mozilla Firefox是美国Mozilla基金会开发的一款开源Web浏览器。 Mozilla Firefox的HTML解析器存在释放后使用漏洞。当空间不足无法处理剩余的输入时，Firefox的HTML解析器会错误的释放正在被使用的内存。在这种情况下，使用中对象所占据的内存释放后可能被攻击者所控制的内容填充，再次调用被释放对象上方式的时候就可能导致执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1571

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1571

请登录查看更多情报信息。

http://secunia.com/secunia_research/2009-45/x_refsource_MISC
http://www.mozilla.org/security/announce/2010/mfsa2010-03.htmlx_refsource_CONFIRM
https://bugzilla.mozilla.org/show_bug.cgi?id=526500x_refsource_CONFIRM
http://secunia.com/advisories/37242third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/38770third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/38847third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/38772third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2010/dsa-1999vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/USN-896-1vendor-advisoryx_refsource_UBUNTU
USN-895-1: Firefox 3.0 and Xulrunner 1.9 vulnerabilities | Ubuntu security notices | Ubuntuvendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2010/0650vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/0405vdb-entryx_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2010-0113.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2010:042vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2010-0112.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2010-0153.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2010-0154.htmlvendor-advisoryx_refsource_REDHAT
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036097.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036132.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035346.htmlvendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00001.htmlvendor-advisoryx_refsource_SUSE
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035426.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.htmlvendor-advisoryx_refsource_FEDORA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8615vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11227vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/56361vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/509585/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2009-1571

Same Patch Batch · n/a · 2010-02-21 · 9 CVEs total

CVE-2010-0283		MIT Kerberos KDC 'handle_tgt_authdata()' 拒绝服务漏洞
CVE-2010-0410		Linux Kernel ‘drivers/connector/connector.c’本地拒绝服务漏洞
CVE-2010-0286		Typo3 OpenID 身份认证扩展件未明漏洞
CVE-2009-3988		Mozilla Firefox 和SeaMonkey 'showModalDialog'方法跨域脚本攻击漏洞
CVE-2010-0159		Mozilla Firefox浏览器引擎远程内存破坏漏洞
CVE-2010-0160		Mozilla Firefox Web Workers数组数据类型远程内存破坏漏洞
CVE-2010-0162		Mozilla Firefox SVG文档执行跨域脚本漏洞
CVE-2010-0188		Adobe Reader和Acrobat TIFF图像处理缓冲区溢出漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-1571

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-1571

I. Basic Information for CVE-2009-1571

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-1571

III. Intelligence Information for CVE-2009-1571

Same Patch Batch · n/a · 2010-02-21 · 9 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-1571

Leave a comment