VulnerableCode Vulnerability Details - VCID-ye7n-9kgr-mqc9

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-ye7n-9kgr-mqc9

Essentials
Severities (2)
References (10)
Severity details (1)
Exploits (1)
EPSS
History (1)

Vulnerability ID	VCID-ye7n-9kgr-mqc9
Aliases	CVE-2009-1313
Summary	One of the security fixes in Firefox 3.0.9 introduced a regression that caused some users to experience frequent crashes. Users of the HTML Validator add-on were particularly affected, but other users also experienced this crash in some situations. In analyzing this crash we discovered that it was due to memory corruption similar to cases that have been identified as security vulnerabilities in the past.
Status	Published
Exploitability	None
Weighted Severity	None
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (0)

There are no known CWE.

System	Score	Found at
epss	0.32166	https://api.first.org/data/v1/epss?cve=CVE-2009-1313
generic_textual	critical	https://www.mozilla.org/en-US/security/advisories/mfsa2009-23

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1313.json
		https://api.first.org/data/v1/epss?cve=CVE-2009-1313
497447		https://bugzilla.redhat.com/show_bug.cgi?id=497447
CVE-2009-1313		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1313
CVE-2009-1313;OSVDB-54174	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32961.html
CVE-2009-1313;OSVDB-54174	Exploit	https://www.securityfocus.com/bid/34743/info
GLSA-201301-01		https://security.gentoo.org/glsa/201301-01
mfsa2009-23		https://www.mozilla.org/en-US/security/advisories/mfsa2009-23
RHSA-2009:0449		https://access.redhat.com/errata/RHSA-2009:0449
USN-765-1		https://usn.ubuntu.com/765-1/

Data source	Exploit-DB
Date added	April 27, 2009
Description	Mozilla Firefox 3.0.9 - 'nsTextFrame::ClearTextRun()' Remote Memory Corruption
Ransomware campaign use	Known
Source publication date	April 27, 2009
Exploit type	dos
Platform	linux
Source update date	April 22, 2014
Source URL	https://www.securityfocus.com/bid/34743/info

Exploit Prediction Scoring System (EPSS)

Percentile	0.96912
EPSS Score	0.32166
Published At	May 29, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-05-29T08:27:38.630398+00:00	Mozilla Importer	Import	https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2009/mfsa2009-23.md	38.6.0