CVE-2010-0169

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions 3.0.x through 3.0.17 Mozilla Firefox versions 3.5.x through 3.5.7 Mozilla Firefox versions 3.6.x through 3.6.1 Thunderbird versions prior to 3.0.2 SeaMonkey versions prior to 2.0.3

Description The issue allows remote attackers to potentially disrupt the rendering of a web page by modifying the browser's font and other CSS attributes. This is achieved by forcing the browser to perform erroneous stylesheet caching. The CSSLoaderImpl::DoSheetComplete function is involved in this issue.

Recommendations For Mozilla Firefox versions 3.0.x through 3.0.17, update to version 3.0.18 or later. For Mozilla Firefox versions 3.5.x through 3.5.7, update to version 3.5.8 or later. For Mozilla Firefox versions 3.6.x through 3.6.1, update to version 3.6.2 or later. For Thunderbird versions prior to 3.0.2, update to version 3.0.2 or later. For SeaMonkey versions prior to 2.0.3, update to version 2.0.3 or later.