Approved changes feed: RSS · Atom
cpe:2.3:a:mozilla:firefox:3.7:alpha2:*:*:*:*:*:*
part: a version: 3.7 update: alpha2
| Vendor | Mozilla (be1b0d4e-21a7-5a25-9982-bbda6ef43ec1) |
|---|---|
| Product | Firefox (d152d976-2d5e-5cc4-89b6-e80c6d067896) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/firefox |
purl2cpe | 2026-06-01 10:17:52.962108 |
pkg:mozilla/mozilla-central |
purl2cpe | 2026-06-01 10:17:52.962110 |
pkg:rpm/fedora/firefox |
purl2cpe | 2026-06-01 10:17:52.962112 |
pkg:rpm/opensuse/mozillafirefox |
purl2cpe | 2026-06-01 10:17:52.962113 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2010-1028 |
vulnerable | 2026-06-03 14:30:12.017870 |
Details available
Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vd_ff module in VulnDisco 9.0.
Published: 2010-03-19T21:00:00.000Z
Updated: 2024-08-07T01:06:52.565Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.