Search for vulnerabilities
Vulnerability details: VCID-btzs-2ctq-aaaj
Vulnerability ID VCID-btzs-2ctq-aaaj
Aliases CVE-2009-1313
Summary CVE-2009-1313 Firefox crash in nsTextFrame::ClearTextRun()
Status Published
Exploitability 2.0
Weighted Severity 9.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-399 Resource Management Errors
System Score Found at
rhas Critical https://access.redhat.com/errata/RHSA-2009:0449
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.3793 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.48714 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93062 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93062 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93062 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93062 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
epss 0.93212 https://api.first.org/data/v1/epss?cve=CVE-2009-1313
cvssv2 9.3 https://nvd.nist.gov/vuln/detail/CVE-2009-1313
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2009-23
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1313.json
https://api.first.org/data/v1/epss?cve=CVE-2009-1313
https://bugzilla.mozilla.org/show_bug.cgi?id=489647
https://bugzilla.mozilla.org/show_bug.cgi?id=489676
https://bugzilla.mozilla.org/show_bug.cgi?id=490233
https://bugzilla.redhat.com/show_bug.cgi?id=497447
http://secunia.com/advisories/34851
http://secunia.com/advisories/34866
http://secunia.com/advisories/34910
http://secunia.com/advisories/34919
http://securitytracker.com/id?1022126
http://securitytracker.com/id?1022127
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.350967
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10446
https://rhn.redhat.com/errata/RHSA-2009-0449.html
http://www.mandriva.com/security/advisories?name=MDVSA-2009:111
http://www.mozilla.org/security/announce/2009/mfsa2009-23.html
http://www.securityfocus.com/bid/34743
http://www.ubuntu.com/usn/USN-765-1
http://www.vupen.com/english/advisories/2009/1180
cpe:2.3:a:mozilla:firefox:3.0.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:3.0.9:*:*:*:*:*:*:*
CVE-2009-1313 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1313
CVE-2009-1313 https://nvd.nist.gov/vuln/detail/CVE-2009-1313
CVE-2009-1313;OSVDB-54174 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32961.html
CVE-2009-1313;OSVDB-54174 Exploit https://www.securityfocus.com/bid/34743/info
GLSA-201301-01 https://security.gentoo.org/glsa/201301-01
mfsa2009-23 https://www.mozilla.org/en-US/security/advisories/mfsa2009-23
RHSA-2009:0449 https://access.redhat.com/errata/RHSA-2009:0449
USN-765-1 https://usn.ubuntu.com/765-1/
Data source Exploit-DB
Date added April 27, 2009
Description Mozilla Firefox 3.0.9 - 'nsTextFrame::ClearTextRun()' Remote Memory Corruption
Ransomware campaign use Known
Source publication date April 27, 2009
Exploit type dos
Platform linux
Source update date April 22, 2014
Source URL https://www.securityfocus.com/bid/34743/info
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C Found at https://nvd.nist.gov/vuln/detail/CVE-2009-1313
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.96899
EPSS Score 0.3793
Published At March 28, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.