Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-6wb2-shx3-jqgk
Summary
Security researcher Nils of MWR InfoSecurity
reported that the routine for setting the text value for certain types
of DOM nodes contained an integer overflow vulnerability.  When a very
long string was passed to this routine, the integer value used in
creating a new memory buffer to hold the string would overflow,
resulting in too small a buffer being allocated.  An attacker could
use this vulnerability to write data past the end of the buffer,
causing a crash and potentially running arbitrary code on a victim's
computer.
Aliases
0
alias CVE-2010-1196
Fixed_packages
0
url pkg:mozilla/Firefox@3.5.10
purl pkg:mozilla/Firefox@3.5.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.10
1
url pkg:mozilla/Firefox@3.6.4
purl pkg:mozilla/Firefox@3.6.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.6.4
2
url pkg:mozilla/SeaMonkey@2.0.5
purl pkg:mozilla/SeaMonkey@2.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.0.5
3
url pkg:mozilla/Thunderbird@3.0.5
purl pkg:mozilla/Thunderbird@3.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.0.5
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1196
reference_id CVE-2010-1196
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1196
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2010-29
reference_id mfsa2010-29
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2010-29
Weaknesses
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-6wb2-shx3-jqgk