Search for vulnerabilities
Vulnerability details: VCID-xb2c-r22q-dkgc
Vulnerability ID VCID-xb2c-r22q-dkgc
Aliases CVE-2009-3379
Summary Mozilla upgraded several third party libraries used in media rendering to address multiple memory safety and stability bugs identified by members of the Mozilla community. Some of the bugs discovered could potentially be used by an attacker to crash a victim's browser and execute arbitrary code on their computer. liboggz, libvorbis, and liboggplay were all upgraded to address these issues.Audio and video capabilities were added in Firefox 3.5 so prior releases of Firefox were not affected.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
epss 0.0515 https://api.first.org/data/v1/epss?cve=CVE-2009-3379
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2009-63
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3379.json
https://api.first.org/data/v1/epss?cve=CVE-2009-3379
531765 https://bugzilla.redhat.com/show_bug.cgi?id=531765
669196 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=669196
CVE-2009-3379 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3379
mfsa2009-63 https://www.mozilla.org/en-US/security/advisories/mfsa2009-63
RHSA-2009:1561 https://access.redhat.com/errata/RHSA-2009:1561
USN-861-1 https://usn.ubuntu.com/861-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.89476
EPSS Score 0.0515
Published At Aug. 8, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:10:40.904413+00:00 Mozilla Importer Import https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2009/mfsa2009-63.md 37.0.0