NVD Vulnerability Detail

CVE-2010-1028

Summary	Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vd_ff module in VulnDisco 9.0.
Publication Date	March 20, 2010, 6:30 a.m.
Registration Date	Jan. 29, 2021, 10:58 a.m.
Last Update	Sept. 19, 2017, 10:30 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:mozilla:firefox:3.6:::::::*
cpe:2.3:a:mozilla:firefox:3.6:a1_pre::::::
cpe:2.3:a:mozilla:firefox:3.6.1:::::::*
cpe:2.3:a:mozilla:firefox:3.7:a1_pre::::::
cpe:2.3:a:mozilla:firefox:3.7:alpha1::::::
cpe:2.3:a:mozilla:firefox:3.7:alpha2::::::
execution environment
1	cpe:2.3:o:microsoft:windows_vista::::::::
2	cpe:2.3:o:microsoft:windows_xp::sp3::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://blog.mozilla.com/security/2010/02/22/secunia-advisory-sa38608/	MISC
2	http://blog.mozilla.com/security/2010/03/18/update-on-secunia-advisory-sa38608/	CONFIRM
3	http://blog.psi2.de/en/2010/02/20/going-commercial-with-firefox-vulnerabilities/	MISC
4	http://secunia.com/advisories/38608	SECUNIA	Vendor Advisory
5	http://secunia.com/community/forum/thread/show/3592	MISC	Vendor Advisory
6	http://www.h-online.com/security/news/item/Zero-day-exploit-for-Firefox-3-6-936124.html	MISC
7	http://www.kb.cert.org/vuls/id/964549	CERT-VN	US Government Resource
8	http://www.mozilla.org/security/announce/2010/mfsa2010-08.html	CONFIRM	Vendor Advisory
9	https://bugzilla.mozilla.org/show_bug.cgi?id=552216	CONFIRM
10	https://forum.immunityinc.com/board/thread/1161/vulndisco-9-0/	MISC
11	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7969	OVAL

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-189	数値処理の問題	https://cwe.mitre.org/data/definitions/189.html

JVN Vulnerability Information

Mozilla Firefox の Web Open Fonts Format デコーダにおける整数オーバーフローの脆弱性

Title	Mozilla Firefox の Web Open Fonts Format デコーダにおける整数オーバーフローの脆弱性
Summary	Mozilla Firefox の Web Open Fonts Format (WOFF) デコーダの復元機能に、バッファオーバーフローを引き起こす整数オーバーフローの脆弱性が存在します。
Possible impacts	第三者により、巧妙に細工された WOFF ファイルを介して、任意のコードを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	March 19, 2010, midnight
Registration Date	April 2, 2010, 2:05 p.m.
Last Update	April 2, 2010, 2:05 p.m.

Affected System

Mozilla Foundation

Mozilla Firefox 3.6.2 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2010-1028	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1028
National Vulnerability Database (NVD)
2	CVE-2010-1028	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1028

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-noinfo	https://www.ipa.go.jp/security/vuln/CWE.html#CWEnoinfo

ベンダー情報

No	Name	URL
Mozilla Foundation Security Advisory
1	MFSA 2010-08	http://www.mozilla.org/security/announce/2010/mfsa2010-08.html
Mozilla Foundation セキュリティアドバイザリ
2	MFSA 2010-08	http://www.mozilla-japan.org/security/announce/2010/mfsa2010-08.html

その他

No	Name	URL
Secunia Advisory
1	SA38608	http://secunia.com/advisories/38608/
SecurityFocus
2	38298	http://www.securityfocus.com/bid/38298
US-CERT Vulnerability Note
3	VU#964549	http://www.kb.cert.org/vuls/id/964549
VUPEN Security
4	VUPEN/ADV-2010-0684	http://www.vupen.com/english/advisories/2010/0684

Change Log

No	Changed Details	Date of change
0	[2010年04月02日] 掲載	Feb. 17, 2018, 10:37 a.m.

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:mozilla:firefox:3.6:::::::*
cpe:2.3:a:mozilla:firefox:3.6:a1_pre::::::
cpe:2.3:a:mozilla:firefox:3.6.1:::::::*
cpe:2.3:a:mozilla:firefox:3.7:a1_pre::::::
cpe:2.3:a:mozilla:firefox:3.7:alpha1::::::
cpe:2.3:a:mozilla:firefox:3.7:alpha2::::::
execution environment
1	cpe:2.3:o:microsoft:windows_vista::::::::
2	cpe:2.3:o:microsoft:windows_xp::sp3::::::*