CVE-2009-2467

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 3.0.12 Mozilla Firefox versions prior to 3.5.1 libmozjs1d-dbg (affected versions not specified) libmozjs1d (affected versions not specified) libmozjs-dev (affected versions not specified) libmozillainterfaces-java (affected versions not specified)

Description The issue involves multiple vulnerabilities that can lead to a denial of service or possibly execute arbitrary code via vectors involving a Flash object, a slow script dialog, and the unloading of the Flash plugin. This can trigger attempted use of a deleted object. Additionally, there are multiple vulnerabilities in various Debian GNU/Linux packages, including libmozjs1d-dbg, libmozjs1d, libmozjs-dev, and libmozillainterfaces-java, which can lead to a violation of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely.

Recommendations For Mozilla Firefox versions prior to 3.0.12, update to version 3.0.12 or later. For Mozilla Firefox versions prior to 3.5.1, update to version 3.5.1 or later. For libmozjs1d-dbg, libmozjs1d, libmozjs-dev, and libmozillainterfaces-java, at the moment, there is no information about a newer version that contains a fix for this vulnerability.