Race condition in the NPObjWrapper_NewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for memory associated with a destroyed Java object.
2009-06-12T21:30:00.360
2025-04-09T00:30:58.490
Deferred
CVSSv3.1: 7.5 (HIGH)
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.6
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | mozilla | firefox | < 3.0.11 | Yes |
| Operating System | debian | debian_linux | 5.0 | Yes |
| Operating System | fedoraproject | fedora | 9 | Yes |
| Operating System | fedoraproject | fedora | 10 | Yes |
| Operating System | redhat | enterprise_linux | 4.0 | Yes |
| Operating System | redhat | enterprise_linux | 5.0 | Yes |
| Operating System | redhat | enterprise_linux_desktop | 4.0 | Yes |
| Operating System | redhat | enterprise_linux_desktop | 5.0 | Yes |
| Operating System | redhat | enterprise_linux_eus | 4.8 | Yes |
| Operating System | redhat | enterprise_linux_eus | 5.3 | Yes |
| Operating System | redhat | enterprise_linux_server | 4.0 | Yes |
| Operating System | redhat | enterprise_linux_server | 5.0 | Yes |
| Operating System | redhat | enterprise_linux_server_aus | 5.3 | Yes |
| Operating System | redhat | enterprise_linux_workstation | 4.0 | Yes |
| Operating System | redhat | enterprise_linux_workstation | 5.0 | Yes |